Name of the Vulnerable Software and Affected Versions:

itsourcecode Sports Management System version 1.0

Description:

A SQL injection issue exists due to manipulation of the `code` argument in an unknown function of the `/Admin/facilitator.php` file. Remote exploitation is possible. The exploit has been made public.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.