Mustafa Günel

**Name of the Vulnerable Software and Affected Versions** Dinosoft ERP versions prior to 3.0.1 through 11022026 **Description** An issue exists in Dinosoft Business Solutions Dinosoft ERP related to missing authentication for a critical function and improper access control. This allows access to functionality that is not properly constrained by Access Control Lists (ACLs). **Recommendations** Update Dinosoft ERP to version 3.0.1 or later.

**Name of the Vulnerable Software and Affected Versions** Callvision Emergency Code versions prior to 3.0 **Description** A flaw exists in Callvision Emergency Code that allows for SQL Injection, including Blind SQL Injection. This issue could grant attackers full database access. The vulnerability is unauthenticated, meaning no login is required to exploit it. **Recommendations** Update to version 3.0 or later.

**Name of the Vulnerable Software and Affected Versions** Armalife versions through 20250916 **Description** This issue involves improper neutralization of special elements used in an SQL command, potentially leading to exposure of sensitive information to an unauthorized actor. The vulnerability allows for SQL Injection. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.