Description: School Log Management System contains a SQL injection vulnerability in the URI. Vulnerability Type: SQL Injection Vendor of Product: https://www.sourcecodester.com/php/14562/school-log-management-system-using-phpmysqli-source-code.html Affected Product Code Base: 1.0 Impact Escalation of Privileges: true POC: - Username: admin' or '1'='1 - Password: any characters - URL: 192.168.0.183:11180/admin/login.php Which '1' stands for success. Then you will be logged in the system.