Rttys · Rttys · CVE-2022-38867
**Name of the Vulnerable Software and Affected Versions**
rttys versions 4.0.0 through 4.0.2
**Description**
The issue allows attackers to execute arbitrary code due to a SQL Injection vulnerability in the api.go file.
**Recommendations**
For versions 4.0.0 through 4.0.2, consider disabling the SQL execution functionality in api.go until a patch is available.
Restrict access to the api.go file to minimize the risk of exploitation.
Avoid using user-supplied input in SQL queries until the issue is resolved.