CVE-2026-6887

CRITICAL WAF: High

CVSS 9.8 Published: 2026-04-23

CWE-89

Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.

WAF Coverage Analysis

SQL Injection High WAF Coverage

OWASP: A03:2021 Injection

942xxx - SQL Injection

References

www.twcert.org.tw
www.twcert.org.tw

Back to CVE Database