Simple Client Management System is a simple client management system from Carlo Montero’s personal developer. version 1.0 of Simple Client Management System is vulnerable to a SQL injection vulnerability that originates in /cms/admin/?page= client/view_client&id= lacks validation of external input SQL statements, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data.