SQL injection vulnerability in Sharetronix before 3.4 allows remote authenticated users to execute arbitrary SQL commands via the invite_users[] parameter to the /invite page for a group.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 77.8%