CVE-2026-40826
MEDIUM
NVD
CVSS Score
4.9
Severity
MEDIUM
Published
May 27, 2026
Vendor
unknown
Description
A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dsgvo_contracts view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.