A vulnerability was found in Shenzhou Shihan Video Conference System 1.0. It has been declared as critical. This affects an unknown function of the file /user/getUserLogin of the component UserLogin Endpoint. Such manipulation leads to sql injection.

This vulnerability is listed as CVE-2026-51821. The attack may be performed from remote. There is no available exploit.