Customer Support System v1 was discovered to contain a SQL injection vulnerability via the id parameter at /customer_support/index.php?page=edit_customer.
https://www.sourcecodester.com/php/14587/customer-support-system-using-phpmysqli-source-code.html