[HIGH] OpenSTAManager has a SQL Injection in ajax_complete.php (get_sedi endpoint)

PKSA-8235-xswg-bmnf CVE-2025-69213 GHSA-w995-ff8h-rppg

Affected package: devcode-it/openstamanager

Affected version: <=2.9.8

Reported by:
GitHub