Ingredients Stock Management System is an ingredient stock management system from Carlo Monteroβs personal developer. v1.0 of the Ingredients Stock Management System is vulnerable to SQL injection, which originates from the /admin/?page= reports/stockout&month= is missing validation of external input SQL statements in the month parameter. An attacker could use this vulnerability to execute illegal SQL commands to steal database data.