CVE-2026-40840 | MB Connect Line mbCONNECT24/mymbCONNECT24 up to 2.20.0 VerifyCreateLicences sql injection (VDE-2026-044)

Inserito da Angelo Barbosa | Mag 27, 2026 | CVE

A vulnerability has been found in MB Connect Line mbCONNECT24 and mymbCONNECT24 up to 2.20.0 and classified as critical. Affected is the function VerifyCreateLicences. Performing a manipulation results in sql injection.

This vulnerability is identified as CVE-2026-40840. The attack can be initiated remotely. There is not any exploit available.

CVE-2026-40840 | MB Connect Line mbCONNECT24/mymbCONNECT24 up to 2.20.0 VerifyCreateLicences sql injection (VDE-2026-044)

Post correlati

CVE-2023-53795 | Linux Kernel up to 6.4.7 iommufd iommufd_ref_to_users deserialization

CVE-2024-58261 | sequoia-pgp sequoia Crate up to 1.20.x on Rust RawCertParser infinite loop (RUSTSEC-2024-0345 / EUVD-2024-54821)

CVE-2024-26351 | flusity CMS 2.33 update_place.php cross-site request forgery

CVE-2024-11995 | code-projects Farmacia 1.0 /pagamento.php total cross site scripting