CVE-2026-33615 | MB connect line mbCONNECT24/mymbCONNECT24 up to 2.19.4 Setinfo Endpoint sql injection (VDE-2026-030)

Inserito da Angelo Barbosa | Apr 2, 2026 | CVE

A vulnerability was found in MB connect line mbCONNECT24 and mymbCONNECT24 up to 2.19.4. It has been declared as critical. Affected by this issue is some unknown functionality of the component Setinfo Endpoint. Executing a manipulation can lead to sql injection.

This vulnerability is registered as CVE-2026-33615. It is possible to launch the attack remotely. No exploit is available.

CVE-2026-33615 | MB connect line mbCONNECT24/mymbCONNECT24 up to 2.19.4 Setinfo Endpoint sql injection (VDE-2026-030)

Post correlati

CVE-2024-33306 | SourceCodester Laboratory Management System 1.0 Create User First Name cross site scripting

CVE-2025-9769 | D-Link DI-7400G+ 19.12.25A1 /mng_platform.asp sub_478D28 addr command injection

CVE-2026-3382 | ChaiScript up to 6.1.0 boxed_number.hpp get_as memory corruption (Issue 635)

CVE-2021-47438 | Linux Kernel up to 5.10.74/5.14.13 mlx5_core_destroy_cq memory leak (4f7bddf8c5c0/ed8aafea4fec/94b960b9deff)