GHSA-qrw9-xj5g-qxw8High
An SQL Injection vulnerability exists in LMS (LAN Management System) before commit 4cb30a7 within...
🔗 CVE IDs covered (1)
📋 Description
An SQL Injection vulnerability exists in LMS (LAN Management System) before commit 4cb30a7 within the "tarifflist.php" module due to insufficient sanitization of the POST "tg[]" parameter. The application directly concatenates user-supplied array values into an SQL query using "implode()", allowing authenticated attackers to perform Error-Based SQL injection and extract sensitive database information.