Online Sports Complex Booking System version 1.0 suffers from a remote blind SQL injection vulnerability in Users.php. This is a similar issue as the one discovered by Saud Alenazi in March of 2022 but affects a different file.
f3b7c99d8727d07603b174d479dfb42058fa680951e9988a3939e654323f2f78