Online Enrollment Management System is an open source online enrollment management system. Online Enrollment Management System version 1.0 contains a SQL injection vulnerability that stems from the lack of effective filtering and escaping of the id parameter, which could be exploited to retrieve sensitive information about all users of the system. The vulnerability is caused by the lack of effective filtering and escaping of the id parameter, which can be used to retrieve sensitive information about all users of the system.