[HIGH] OpenSTAManager has a Time-Based Blind SQL Injection in Article Pricing Module

PKSA-9s5k-763f-q4yd CVE-2026-24416 GHSA-p864-fqgv-92q4

Affected package: devcode-it/openstamanager

Affected version: <=2.9.8

Reported by:
GitHub