CVE-2021-44874
CVE-2021-44874 affects Dalmark Systems Systeam 2.22.8 build 1724. The issue is an insecure design in the BI report module, where the endpoint exposes direct SQL commands via POST data to assemble reports. This allows an authenticated user to submit a SQL prompt to the BI reporting endpoint, enabl...