Unknown · Webinarignition · CVE-2026-40797
**Name of the Vulnerable Software and Affected Versions**
WebinarIgnition versions prior to 4.08.253
**Description**
WebinarIgnition contains an issue where improper neutralization of special elements used in an SQL command allows for Blind SQL Injection. Blind SQL Injection is a technique where an attacker asks the database true or false questions and determines the answer based on the application's response.
**Recommendations**
Update to version 4.08.253 or later.