PT-2026-34636 · Kanata Limited · Cms Alaya
Published
2026-04-23
·
Updated
2026-04-23
·
CVE-2026-40529
CVSS v3.1
4.7
Medium
| AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L |
CMS ALAYA provided by KANATA Limited contains an SQL injection vulnerability. Information stored in the database may be obtained or altered by an attacker with access to the administrative interface.
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cms Alaya