CVE-2025-3893

Name of the Vulnerable Software and Affected Versions MegaBIP versions prior to 5.20

Description The issue arises when a user with high privileges is prompted to provide a reasoning for editing pages managed by MegaBIP. The input provided by the user is not sanitized, leading to a SQL Injection vulnerability.

Recommendations For versions prior to 5.20, update to version 5.20 to fix this issue. As a temporary workaround, consider restricting the input provided by high-privilege users to minimize the risk of exploitation.