CVE-2026-9420 | KLiK SocialMediaWebsite 1.0 HTTP GET Request Parameter injection

Inserito da Angelo Barbosa | Mag 24, 2026 | CVE

A vulnerability classified as critical was found in KLiK SocialMediaWebsite 1.0. This affects an unknown part of the component HTTP GET Request Parameter Handler. The manipulation results in injection.

This vulnerability is known as CVE-2026-9420. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2026-9420 | KLiK SocialMediaWebsite 1.0 HTTP GET Request Parameter injection

Post correlati

CVE-2024-22724 | osCommerce 4 unrestricted upload (Issue 62)

CVE-2024-20497 | Cisco Expressway/TelePresence Video Communication Server improper authorization (cisco-sa-expressway-auth-kdFrcZ2j)

CVE-2024-2695 | Shariff Wrapper Plugin up to 4.6.13 on WordPress Shortcode cross site scripting

CVE-2024-21505 | web3-utils up to 4.2.0 mergeDeep prototype pollution