Elymaroo

**Name of the Vulnerable Software and Affected Versions** GreaterWMS versions <= 2.1.49 **Description** The issue is a credential disclosure vulnerability via the "/staff" route, allowing remote unauthenticated attackers to bypass authentication and escalate privileges. **Recommendations** For GreaterWMS versions <= 2.1.49, update to a version greater than 2.1.49 to resolve the issue. As a temporary workaround, consider restricting access to the "/staff" route until a patch is available.