An issue exists in Tyto Sahi Pro up to and including 7.x.x and 8.0.0. A parameter in the web reports module is vulnerable to h2 SQL injection. This can be exploited to inject SQL queries and run standard h2 system functions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sahipro sahi pro |