A vulnerability categorized as critical has been discovered in Progress Flowmon ADS up to 12.5.5/13.0.4. Affected by this vulnerability is an unknown functionality of the component Requests Handler. The manipulation results in sql injection.

This vulnerability is identified as CVE-2026-9272. The attack can be executed remotely. There is not any exploit available.

It is advisable to upgrade the affected component.