CVE Catalog

CVE-2026-39519

CriticalCVSS 9.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.28%

20th percentile — higher than 20% of all known CVEs

Summary

GeekyBot versions up to 1.2.0 are vulnerable to unauthenticated SQL injection, which may lead to unauthorized access to the database.

Risk Assessment

An attacker could exploit this vulnerability to gain access to sensitive information or manipulate data in the database, posing a serious security threat to the organization.

Recommendation

It is recommended to upgrade GeekyBot to a version above 1.2.0 to mitigate this vulnerability and conduct a security audit of the application.

Original NVD description (English source)

Unauthenticated SQL Injection in GeekyBot <= 1.2.0 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS