PHP Scripts Mall Resume Clone Script has SQL Injection via the forget.php username parameter.
resume clone script project resume clone script 2.0.5