CVE-2026-21630

Name of the Vulnerable Software and Affected Versions versions not specified

Description Improperly built order clauses lead to a SQL injection vulnerability in the articles webservice endpoint. The vulnerability exists due to a flaw in how order clauses are constructed, potentially allowing an attacker to inject malicious SQL code. The affected API endpoint is '/articles'. The vulnerability could allow an attacker to manipulate database queries through the order parameter.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.