Sourcecodester Purchase Order Management System is a simple purchase order management system used to manage the purchase order records of a particular company. SQL injection vulnerability exists in Sourcecodester Purchase Order Management System, which Sourcecodester Purchase Order Management System is vulnerable due to a lack of validation of externally entered SQL statements on the Login.php page. An attacker could exploit this vulnerability to execute illegal SQL commands.