Lead management system is a lead management system developed by Mayuri K. The Lead Management System v1.0 version is vulnerable to SQL injection, which stems from the lack of validation of external input SQL statements in the user_id parameter of changePassword.php. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.