Home

Description

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dash_layout.php files saveDashboardLayout function due to improper neutralization of special elements in a SQL INSERT command allowing for reading the whole database and inserting entries into a non critical table. This can result in a total loss of confidentiality and some loss of integrity.

PUBLISHED Reserved 2026-04-15 | Published 2026-05-27 | Updated 2026-05-27 | Assigner CERTVDE




HIGH: 7.1CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

HIGH: 7.1CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

Problem types

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Product status

Default status
unaffected

0.0.0 (semver)
affected

Default status
unaffected

0.0.0 (semver)
affected

Default status
unaffected

2.20.0
affected

Default status
unaffected

2.20.0
affected

Default status
unaffected

0.0.0 (semver)
affected

Default status
unaffected

0.0.0 (semver)
affected

Default status
unaffected

2.20.0
affected

Default status
unaffected

2.20.0
affected

References

www.certvde.com/en/advisories/VDE-2026-044/

cve.org (CVE-2026-40834)

nvd.nist.gov (CVE-2026-40834)

Download JSON