Zengy

**Name of the Vulnerable Software and Affected Versions** code-projects Client Details System version 1.0 **Description** A flaw exists in the GET Parameter Handler component of the software, specifically within the `clientdetails/welcome.php` file. Manipulation of the `ID` parameter can lead to a SQL injection condition. This issue can be exploited remotely. The exploit is publicly available. **Recommendations** For code-projects Client Details System version 1.0, address the SQL injection issue by sanitizing or validating the `ID` parameter within the `clientdetails/welcome.php` file.