← volver
CVE-2026-1517

iomad Company Admin Block sql injection

CVSS 5.1 MEDIUMEPSS 0.3%CWE-74CWE-89
A vulnerability was identified in iomad up to 5.0. Affected is an unknown function of the component Company Admin Block. Such manipulation leads to sql injection. The attack can be executed remotely. It is best practice to apply a patch to resolve this issue.
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
Productos afectados
n/a · iomad

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/iomad/iomad/https://github.com/iomad/iomad/issues/2559https://github.com/iomad/iomad/issues/2559#issuecomment-3841174677https://vuldb.com/?ctiid.344487https://vuldb.com/?id.344487