CVE-2026-40899 | DataEase up to 2.10.20 getJdbc permissive list of allowed inputs

Inserito da Angelo Barbosa | Apr 16, 2026 | CVE

A vulnerability described as problematic has been identified in DataEase up to 2.10.20. This affects the function getJdbc. Executing a manipulation can lead to permissive list of allowed inputs.

The identification of this vulnerability is CVE-2026-40899. The attack can only be executed locally. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-40899 | DataEase up to 2.10.20 getJdbc permissive list of allowed inputs

Post correlati

CVE-2025-11608 | code-projects E-Banking System 1.0 POST Parameter /register.php username/password sql injection

CVE-2026-24009 | docling-project docling-core up to 2.48.3 deserialization

CVE-2024-13099 | Widget4Call Plugin up to 1.0.7 on WordPress cross site scripting

CVE-2024-56539 | Linux Kernel up to 6.12.1 mwifiex scan.c memory corruption