A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some unknown functionality of the file /edit_costumer.php of the compone…

A SQL injection vulnerability has been discovered in code-projects Accounting System version 1.0. The flaw affects the Parameter Handler component, specifically in the /edit_costumer.php file where manipulation of the cos_id argument leads to SQL injection. The vulnerability can be exploited remotely and the exploit has been published publicly, making it readily available for attackers to use. This represents a significant security risk for organizations using this accounting system.