CVE-2026-41460 - SocialEngine <= 7.8.0 SQL Injection via activity/index/get-memberall
CVE ID :CVE-2026-41460 Published : April 23, 2026, 3:37 p.m. | 12 minutes ago Description :SocialEngine versions 7.8.0 and prior contain a SQL injection vulnerability in the /activity/index/get-memberall endpoint where user-supplied input passed via the text parameter is not sanitized before b
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] "Hackers can now launch massive 2Tbps attacks": Report reveals staggering 10x growth in botnet size with record-breaking DDoS incidents peaking for 40 minutes as multi-vector attacks grow in complexity and become harder to dismantle
- [CYBER] Finance body says Africa faces an 86 million tonne fuel shortfall by 2040
- [CYBER] Apple just fixed an iOS flaw exploited by the FBI - here's what happened
- [CYBER] CTFs in the AI Era
- [CYBER] Secure System Design -- 14 Challenges
- [CYBER] New Checkmarx supply-chain breach affects KICS analysis tool