Security Advisory

CVE-2025-69214

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-06 18:11:34

Last updated 2026-02-09 15:29:08

Assigner GitHub_M

State PUBLISHED

Description

OpenSTAManager is an open source management software for technical assistance and invoicing. In 2.9.8 and earlier, an SQL Injection vulnerability exists in the ajax_select.php endpoint when handling the componenti operation. An authenticated attacker can inject malicious SQL code through the options[matricola] parameter.

← Browse all CVEs View on cve.org ↗