CVE-2026-40819

HIGH WAF: High

CVSS 7.5 Published: 2026-05-27

CWE-89

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the sync_data24 task due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.

WAF Coverage Analysis

SQL Injection High WAF Coverage

OWASP: A03:2021 Injection

942xxx - SQL Injection

References

www.certvde.com

Back to CVE Database