CVE-2024-49655

Name of the Vulnerable Software and Affected Versions ARPrice versions n/a through 4.0.3

Description The issue is related to improper neutralization of special elements used in an SQL command, allowing SQL injection. This problem affects ARPrice, enabling potential attackers to inject SQL code.

Recommendations For versions n/a through 4.0.3, update to a version later than 4.0.3 to resolve the issue. As a temporary workaround, consider restricting access to sensitive SQL commands and validating user input to minimize the risk of exploitation.