{"vulnerability": "cve-2026-24418", "sightings": [{"uuid": "c341e230-6af8-4624-87d6-9198b3b68dd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-24418", "type": "published-proof-of-concept", "source": "https://github.com/devcode-it/openstamanager/security/advisories/GHSA-4xwv-49c8-fvhq", "content": "", "creation_timestamp": "2026-02-06T16:47:32.000000Z"}, {"uuid": "0904f62f-4069-402c-b6b9-c96e4ae56395", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24418", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/116834915504542283", "content": "\u203c\ufe0f CVE-2026-24418: OpenSTAManager v2.9.8 and earlier contain a critical Error-Based SQL Injection vulnerability in the bulk operations handler for the Scadenzario (Payment Schedule) module.\nGitHub: https://github.com/BridgerAlderson/CVE-2026-24418", "creation_timestamp": "2026-06-29T18:55:45.369582Z"}]}