File Tracker Manager System is a file tracker manager system. File Tracker Manager System v1.0 suffers from a SQL injection vulnerability, which originates from the lack of validation of the parameter new_password in the file register/update_password.php against externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal SQL commands to steal sensitive database data.