NextGuard
UNKNOWNCVE-2026-33615

MB connect line mbCONNECT24 vulnerable to an unauthenticated SQL injection in the setinfo Endpoint

Platform

other

Component

mbconnect24

View on NVD

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the setinfo endpoint due to improper neutralization of special elements in a SQL UPDATE command. This can result in a total loss of integrity and availability.

How to fix

Actualice mbCONNECT24 a una versión posterior a la 2.19.4. Esto corrige la vulnerabilidad de inyección SQL y previene la pérdida de integridad y disponibilidad del sistema.

Monitor your dependencies automatically

Get notified when new vulnerabilities affect your projects. Free forever.

Start free
CVE-2026-33615 — Vulnerability Details | NextGuard | NextGuard