2026-01-15 23:25:46
VulnCheck
PUBLISHED
Vianeos OctoPUS 5 contains a time-based blind SQL injection vulnerability in the login_user parameter during authentication requests. Attackers can exploit this vulnerability by crafting malicious POST requests with specially constructed SQL payloads that trigger database sleep functions to extract information.