2025-08-27 10:24:45
CERT-PL
PUBLISHED
In the ReturnUserUnitsXML.pl service, the "getUserInfo" function is vulnerable to SQL injection through the "UserID" parameter.