CVE-2026-40455

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published Jun 18, 2026

Vendor unknown

Description

An SQL Injection vulnerability exists in LMS (LAN Management System) before commit 4cb30a7 within the "tarifflist.php" module due to insufficient sanitization of the POST "tg[]" parameter. The application directly concatenates user-supplied array values into an SQL query using "implode()", allowing authenticated attackers to perform Error-Based SQL injection and extract sensitive database information.

References

https://cert.pl/posts/2026/06/CVE-2026-40455
https://github.com/chilek/lms/commit/4cb30a70e7e3d8a0ea53afa2dbef19d5243d449b
https://lms.org.pl/