Key Information Vulnerability Title: SourceCodester Pet Grooming Management Software inv-print.php SQL Injection Vulnerability Affected Version: SourceCodester Pet Grooming Management Software v1.0 Test Environment: PHP 8.4.5, OpenResty 1.21.4.3-3-focal CVE Status: Reported, awaiting CVE ID Description The parameter in is vulnerable to SQL injection. Payload Proof of Concept Constructed a POST request and sent it to , successfully retrieving injected data in the response. Code review revealed that the parameter is directly concatenated into the SQL query, leading to the SQL injection vulnerability. Relevant Code Snippet