The 'age' parameter of the process_registration.php resource does not validate the characters received and they are sent unfiltered to the database. Referenceshttps://fluidattacks.com/advisories/starrhttps://projectworlds.in/
