14Hydrian

**Name of the Vulnerable Software and Affected Versions** hydrian TTRSS-Auth-LDAP versions prior to 2.0b1 **Description** A problematic issue has been found in the Username Handler component, leading to ldap injection. The estimated number of potentially affected devices is not specified. There is no information about real-world incidents where this issue was exploited. The manipulation of the `username` variable can lead to ldap injection. **Recommendations** For versions prior to 2.0b1, upgrade to version 2.0b1 to address this issue. As a temporary workaround, consider restricting the use of the Username Handler component until a patch is applied.