CVE-2025-40886

Name of the Vulnerable Software and Affected Versions Alert functionality (affected versions not specified)

Description A SQL Injection issue exists due to inadequate input validation. An authenticated user with limited privileges can execute arbitrary SQL statements, potentially leading to unauthorized data exposure, database structure and content alteration, and/or service disruption. The vulnerability resides in the Alert functionality and involves improper validation of an input parameter.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.