Advanced School Management System, a school management system by Angel Jude Reyes Suarez, is a SQL injection vulnerability in version v1.0 of Advanced School Management System, which originates from /school/model/ get_classroom.php?id=The page lacks validation for external input SQL statements, which could be exploited to execute illegal SQL commands to steal sensitive database data.