In Covid 19 Travel Pass Management 1.0, the code parameter is vulnerable to SQL injection attacks.