Vulnérabilité unknown détectée - CVE-2026-25606

A SQL injection vulnerability has been identified in STER. Improper neutralization of input provided by user into multiple Search Filters allows for S...

CVE concernées (1)

CVE-2026-25606

Description

A SQL injection vulnerability has been identified in STER. Improper neutralization of input provided by user into multiple Search Filters allows for SQL Injection attacks. It allows an authenticated attacker to view sensitive data such as data belonging to other users, or any other data that the application itself is able to access This issue was fixed in version 9.5.

Type de vulnérabilité

CWE-89

Recommandations

Appliquer les correctifs de sécurité fournis par le vendeur dès que possible.

Recommandations de sécurité

Appliquer immédiatement les correctifs de sécurité
Surveiller les systèmes pour détecter toute tentative d'exploitation

Références et sources

NVD - CVE-2026-25606