Name of the Vulnerable Software and Affected Versions:

SourceCodester Online Book Store version 1.0

Description:

A SQL injection issue exists due to the manipulation of the `pubid` parameter when processing the `/publisher list.php` file. This allows for remote attacks. The exploit has been published.

Recommendations:

As a temporary workaround, restrict access to the `/publisher list.php` file to minimize the risk of exploitation.

Avoid using the `pubid` parameter in the affected API endpoint `/publisher list.php` until the issue is resolved.