Hackerb

**Name of the Vulnerable Software and Affected Versions** Dvbbs version 8.2.0 **Description** A SQL injection issue exists, allowing remote attackers to execute arbitrary SQL commands. This is achieved via the `username` parameter in the "login.asp" file. **Recommendations** For Dvbbs version 8.2.0, consider restricting access to the login.asp file until a patch is available, and avoid using the `username` parameter in the affected API endpoint until the issue is resolved.