[HIGH] OpenSTAManager has an SQL Injection in the Stampe Module

PKSA-z7vr-c7n6-k2xn CVE-2025-69215 GHSA-qx9p-w3vj-q24q

Affected version: <=2.9.8

Reported by:
GitHub

[HIGH] OpenSTAManager has a SQL Injection in ajax_complete.php (get_sedi endpoint)

PKSA-8235-xswg-bmnf CVE-2025-69213 GHSA-w995-ff8h-rppg

Affected version: <=2.9.8

Reported by:
GitHub