CVE-2026-1517 | iomad up to 5.0 Company Admin Block sql injection (Issue 2559)

Inserito da Angelo Barbosa | Feb 5, 2026 | CVE

A vulnerability, which was classified as critical, was found in iomad up to 5.0. Affected is an unknown function of the component Company Admin Block. Such manipulation leads to sql injection.

This vulnerability is documented as CVE-2026-1517. The attack can be executed remotely. Additionally, an exploit exists.

You should upgrade the affected component.

CVE-2026-1517 | iomad up to 5.0 Company Admin Block sql injection (Issue 2559)

Post correlati

CVE-2025-49043 | Magic Responsive Slider and Carousel Plugin up to 1.6 on WordPress cross site scripting

CVE-2024-29116 | IconicWP WooThumbs for WooCommerce Plugin up to 5.5.3 on WordPress cross site scripting

CVE-2024-54848 | CP Plus CP-VNR-3104 B3223P22C02424 channel accessible

CVE-2023-51747 | Apache James Server up to 3.7.4/3.8.0 SMTP input validation