Name of the Vulnerable Software and Affected Versions:

code-projects Human Resource Integrated System version 1.0

Description:

A SQL injection issue exists in the /log query.php file. Manipulation of the `ID` argument can lead to SQL injection. The exploit has been made public and could be used to perform remote attacks.

Recommendations:

As a temporary workaround, consider restricting access to the /log query.php file until a fix is available.

Sanitize the `ID` argument to prevent SQL injection attacks.