CVE-2026-33616 | MB connect line mbCONNECT24/mymbCONNECT24 up to 2.19.4 mb24api Endpoint sql injection (VDE-2026-030)

Inserito da Angelo Barbosa | Apr 2, 2026 | CVE

A vulnerability was found in MB connect line mbCONNECT24 and mymbCONNECT24 up to 2.19.4. It has been rated as critical. This affects an unknown part of the component mb24api Endpoint. The manipulation leads to sql injection.

This vulnerability is documented as CVE-2026-33616. The attack can be initiated remotely. There is not any exploit available.

CVE-2026-33616 | MB connect line mbCONNECT24/mymbCONNECT24 up to 2.19.4 mb24api Endpoint sql injection (VDE-2026-030)

Post correlati

CVE-2024-38467 | Shenzhen Guoxin Synthesis Image System up to 8.2.x API queryUser improper authorization

CVE-2025-5790 | TOTOLINK X15 1.0.0-B20230714.1105 HTTP POST Request /boafrm/formIpQoS mac buffer overflow

CVE-2024-9007 | jeanmarc77 123solar 1.8.4.5 /detailed.php date1 cross site scripting (Issue 73)

CVE-2025-2028 | Check Point Management Log Server R81.10/R81.20/R82 CSV File certificate validation