Prog Management System developed by PROG MIS has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.Referenceshttps://www.twcert.org.tw/tw/cp-132-11025-fa1d9-1.htmlhttps://www.twcert.org.tw/en/cp-139-11026-3df18-2.html