CVE-2024-51843

Name of the Vulnerable Software and Affected Versions Olland.Biz Horsemanager versions n/a through 1.3

Description The issue is related to an Improper Neutralization of Special Elements used in an SQL Command, also known as a SQL Injection vulnerability, which allows Blind SQL Injection. This means that an attacker could potentially inject malicious SQL code into the application, allowing them to access or modify sensitive data.

Recommendations For versions n/a through 1.3, update the software to a version that is not affected by this issue, as soon as a fixed version is available. As a temporary workaround, consider restricting access to sensitive data and implementing additional security measures to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.