A vulnerability was found in Pear Admin Boot up to 2.0.2 and classified as critical. This issue affects the function
getDictItems
of the file /system/dictData/getDictItems/. The manipulation with the input ,user(),1,1
leads to sql injection.
The identification of this vulnerability is CVE-2024-6241. The attack may be initiated remotely. Furthermore, there is an exploit available.