Wedding Management System v1.0 is a wedding planning management system by John Paul Lim Gabule, a personal developer, and a SQL injection vulnerability in /Wedding-Management/admin/. client_manage_account_details.php?booking_id=31&user_id page lacks validation for external input SQL statements, which can be exploited to execute illegal SQL commands to steal sensitive database data.