A vulnerability was found in Money Manager EX WebApp 1.2.2. It has been classified as critical. This affects the function
transaction_delete_group
. The manipulation of the argument TrDeleteArr leads to sql injection.
This vulnerability is uniquely identified as CVE-2024-41618. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.