CVE-2026-40821 | MB Connect Line mbCONNECT24/mymbCONNECT24 up to 2.20.0 getAccountByID sql injection (VDE-2026-044)

Inserito da Angelo Barbosa | Mag 27, 2026 | CVE

A vulnerability described as critical has been identified in MB Connect Line mbCONNECT24 and mymbCONNECT24 up to 2.20.0. The impacted element is the function getAccountByID. Executing a manipulation can lead to sql injection.

The identification of this vulnerability is CVE-2026-40821. The attack may be launched remotely. There is no exploit available.

CVE-2026-40821 | MB Connect Line mbCONNECT24/mymbCONNECT24 up to 2.20.0 getAccountByID sql injection (VDE-2026-044)

Post correlati

CVE-2024-26307 | Apache Doris up to 1.2.7/2.0.3 chmod race condition

CVE-2024-12636 | Privacy Policy Generator, Terms & Conditions Generator Plugin cross-site request forgery

CVE-2025-9571 | Google Cloud Cloud Data Fusion up to 6.10.5/6.11.0 AppFabric deserialization (gcp-2025-076)

CVE-2026-41080 | libexpat up to 2.7.5 XML Document entropy (ID 47 / EUVD-2026-23276)