Mautic · Mautic · CVE-2026-4776
**Name of the Vulnerable Software and Affected Versions**
Mautic (affected versions not specified)
**Description**
An SQL injection occurs in the API contact filtering mechanism. This issue arises from insufficient recursive sanitization of nested query parameters, allowing an authenticated API user to bypass input filtering and execute arbitrary SQL commands.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.