Tag

Openstamanager

1 brief RSS

OpenSTAManager Time-Based Blind SQL Injection Vulnerability

OpenSTAManager versions before 2.10.2 are susceptible to time-based blind SQL injection via the 'options[stato]' GET parameter, allowing authenticated attackers to extract sensitive database information.

openstamanager sqli cve-2026-28805

2r 1t Apr 2, 2026