CVE-2026-42647
9.3 CRITICALImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Beardev JoomSport allows Blind SQL ...
Published: 2026-06-11 · Last updated: 2026-06-11
Severity and scoring
- CVSS
- 9.3 CRITICAL
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L
- CWE
- CWE-89
Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Beardev JoomSport allows Blind SQL Injection. This issue affects JoomSport: from n/a through 5.7.7.
Source: NVD
References
Related CVEs
Same CWE
- CVE-2026-48613 — SQL injection vulnerability in phpBB profile field migration due to improper handling of user-supplied profile field data during migratio... (5.9 MEDIUM)
- CVE-2026-45418 — ClipBucket v5 is an open source video sharing platform (8.8 HIGH)
- CVE-2026-45060 — ClipBucket v5 is an open source video sharing platform (9.8 CRITICAL)
- CVE-2026-39494 — Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WBW Plugins Product Filter by WBW a... (9.3 CRITICAL)
- CVE-2026-11945 — PostgreSQL Anonymizer contains a vulnerability that allows a user to gain superuser privileges by creating a JSON document and placing ma... (6.4 MEDIUM)