A vulnerability classified as critical has been found in DataLife Engine up to 17.1. This affects an unknown part. The manipulation of the argument dboption leads to sql injection.
This vulnerability is uniquely identified as CVE-2024-37699. Access to the local network is required for this attack to succeed. Furthermore, there is an exploit available.