CVE-2026-40838 | MB Connect Line mbCONNECT24/mymbCONNECT24 up to 2.20.0 getDeviceScalings sql injection (VDE-2026-044)

Inserito da Angelo Barbosa | Mag 27, 2026 | CVE

A vulnerability, which was classified as critical, has been found in MB Connect Line mbCONNECT24 and mymbCONNECT24 up to 2.20.0. This affects the function getDeviceScalings. This manipulation causes sql injection.

The identification of this vulnerability is CVE-2026-40838. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-40838 | MB Connect Line mbCONNECT24/mymbCONNECT24 up to 2.20.0 getDeviceScalings sql injection (VDE-2026-044)

Post correlati

CVE-2024-7629 | Responsive Video Plugin up to 1.0 on WordPress cross site scripting

CVE-2024-1512 | MasterStudy LMS WordPress Plugin up to 3.2.5 on WordPress sql injection

CVE-2024-42179 | HCL DRYiCE MyXalytics 6.3 HTTP Response Header information disclosure (KB0118149)

CVE-2023-47064 | Adobe Experience Manager up to 6.5.18 cross site scripting (apsb23-72)