Name of the Vulnerable Software and Affected Versions:

code-projects Exam Form Submission version 1.0

Description:

A vulnerability exists in an unknown functionality of the file `/admin/delete s4.php`. Manipulation of the `ID` argument leads to SQL injection, allowing for remote attacks. The exploit has been publicly disclosed.

Recommendations:

As a temporary workaround, consider restricting access to the `/admin/delete s4.php` file until a fix is available.

Sanitize the `ID` parameter to prevent SQL injection attacks.