A vulnerability classified as critical was found in cap-js cap-js and cds-dbs 2.2.2/2.2.2/2.10.1. This issue affects some unknown processing of the component Database Service. Executing a manipulation can lead to sql injection.
This vulnerability is tracked as CVE-2026-46421. The attack can be launched remotely. No exploit exists.