Name of the Vulnerable Software and Affected Versions:

code-projects Online Farm System version 1.0

Description:

A critical issue exists in code-projects Online Farm System 1.0. The vulnerability is due to a SQL injection flaw within an unknown function of the file `/forgot passfarmer.php`. The `email` parameter can be manipulated to exploit this issue, allowing for remote attacks. The exploit details have been publicly disclosed.

Recommendations:

As a temporary workaround, consider restricting access to the `/forgot passfarmer.php` file until a fix is available.

Sanitize the `email` parameter before using it in any SQL queries.