Please report security issues to info@openstamanager.com
Security: devcode-it/openstamanager
Security
SECURITY.md
-
Remote Code Execution via Insecure Deserialization in OAuth2GHSA-whv5-4q2f-q68g published
Apr 1, 2026 by loviuzHigh -
SQL Injection via righe Parameter in confronta_righe ModalsGHSA-mmm5-3g4x-qw39 published
Apr 1, 2026 by loviuzHigh -
SQL Injection via Aggiornamenti ModuleGHSA-2fr7-cc4f-wh98 published
Apr 1, 2026 by loviuzHigh -
Time-Based Blind SQL Injection via `options[stato]` ParameterGHSA-3gw8-3mg3-jmpc published
Apr 1, 2026 by loviuzHigh -
Unauthenticated privilege escalation in OpenSTAManager via modules/utenti/actions.phpGHSA-247v-7cw6-q57v published
Mar 3, 2026 by loviuzCritical -
SQL Injection in the Prima Nota moduleGHSA-4j2x-jh4m-fqv6 published
Feb 6, 2026 by loviuzHigh -
SQL Injection vulnerability in the Scadenzario bulk operations moduleGHSA-4xwv-49c8-fvhq published
Feb 6, 2026 by loviuzHigh -
Time-Based Blind SQL Injection with Amplified Denial of ServiceGHSA-4hc4-8599-xh2h published
Feb 6, 2026 by loviuzHigh -
Time-Based Blind SQL Injection in Article Pricing ModuleGHSA-p864-fqgv-92q4 published
Feb 6, 2026 by loviuzHigh -
Multiple Reflected XSS in modifica_iva.php via righe parameterGHSA-jfgp-g7x7-j25j published
Mar 3, 2026 by loviuzModerate
Learn more about advisories related to devcode-it/openstamanager in the GitHub Advisory Database