A SQL injection vulnerability has been discovered in itsourcecode University Management System version 1.0. The flaw affects the /admin_single_student.php file through manipulation of the ID parameter. This vulnerability can be exploited remotely and allows attackers to perform SQL injection attacks. The exploit code has been publicly published and is available for use, increasing the risk of active exploitation. The vulnerability poses a high security risk due to its remote exploitability and public availability of exploit code.