CVE-2026-4173 | CodePhiliaX Chat2DB up to 0.3.7 Database Export DMDBManage.java sql injection

A vulnerability, which was classified as critical, has been found in CodePhiliaX Chat2DB up to 0.3.7. This vulnerability affects the function exportTable/exportTableColumnComment/exportView/exportProcedure/exportTriggers/exportTrigger/updateProcedure of the file DMDBManage.java of the component Database Export Handler. This manipulation causes sql injection.

The identification of this vulnerability is CVE-2026-4173. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-4173 | CodePhiliaX Chat2DB up to 0.3.7 Database Export DMDBManage.java sql injection

Post correlati

CVE-2026-2623 | Blossom up to 1.17.1 File Upload BLOSManager.java put path traversal

CVE-2024-8473 | PHPGurukul Job Portal 1.0 login.php user_email cross site scripting

CVE-2024-9841 | OpenText ArcSight Management Center/ArcSight Platform cross site scripting (KM000035977)

CVE-2024-8007 | Red Hat OpenStack Platform Director TLS cryptographic issues