CVE-2026-40841 | MB Connect Line mbCONNECT24/mymbCONNECT24 up to 2.20.0 getProjectTags sql injection (VDE-2026-044)

Inserito da Angelo Barbosa | Mag 27, 2026 | CVE

A vulnerability was found in MB Connect Line mbCONNECT24 and mymbCONNECT24 up to 2.20.0 and classified as critical. Affected by this vulnerability is the function getProjectTags. Executing a manipulation can lead to sql injection.

This vulnerability is tracked as CVE-2026-40841. The attack can be launched remotely. No exploit exists.

CVE-2026-40841 | MB Connect Line mbCONNECT24/mymbCONNECT24 up to 2.20.0 getProjectTags sql injection (VDE-2026-044)

Post correlati

CVE-2024-35351 | Diño Physics School Assistant 2.3 SystemSettings.php name cross site scripting

CVE-2024-9100 | Zoho ManageEngine Analytics Plus/Analytics On-Premise up to 5409 path traversal

CVE-2023-48860 | Totolink N300RT 3.2.4-B20180730.0906 access control

CVE-2025-41238 | VMware ESXi Paravirtualized SCSI out-of-bounds write