Bakeshop Inventory System 1.0 has SQL injection via the login screen, related to include/publicfunction.vb.
bakeshop inventory system project bakeshop inventory system 1.0