[HIGH] OpenSTAManager has a SQL Injection vulnerability in the Scadenzario bulk operations module

PKSA-ff9m-7w2n-x2fw CVE-2026-24418 GHSA-4xwv-49c8-fvhq

Affected package: devcode-it/openstamanager

Affected version: <=2.9.8

Reported by:
GitHub