Simple E-Learning System is a simple e-learning system from Carlo Monteroβs personal developer. simple E-Learning System is vulnerable to SQL injection due to a lack of validation of external input SQL statements in the search.php parameter searchPost. . An attacker could use this vulnerability to execute illegal SQL commands to steal database data.