CVE-2026-40529
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
4.7 / 10
Vector String
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Vulnerability Description
CMS ALAYA provided by KANATA Limited contains an SQL injection vulnerability. Information stored in the database may be obtained or altered by an attacker with access to the administrative interface.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-89
Source
NVD
Vendor
KANATA Limited
Product
CMS ALAYA
Discussion (0)
Add Comment
No comments yet. Be the first!