CVE Catalog

CVE-2026-57752

HighCVSS 8.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.29%

21th percentile — higher than 21% of all known CVEs

Summary

SQL Injection vulnerability in the Contributor component of iNET Webkit 1.2.4 allows an attacker to inject malicious SQL code into database queries.

Risk Assessment

An attacker can gain unauthorized access to data, modify or delete it, leading to a breach of confidentiality and integrity of the system.

Recommendation

Immediately update iNET Webkit to the latest version and apply parameterized SQL queries in the Contributor component.

Original NVD description (English source)

Contributor SQL Injection in iNET Webkit 1.2.4 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS