CVE-2024-5958

Name of the Vulnerable Software and Affected Versions: Eliz Software Panel versions prior to 2.3.24

Description: The issue is related to an SQL Injection vulnerability, which allows for Command Line Execution through SQL Injection. This is due to the improper neutralization of special elements used in an SQL command.

Recommendations: For versions prior to 2.3.24, update to version 2.3.24 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive SQL commands to minimize the risk of exploitation.