AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter.
arox school erp php script 1.0