PT-2026-42837 · Rt · Rt

Highcbrandtbuffalo

·

Published

2026-05-22

·

Updated

2026-07-06

·

CVE-2026-41075

CVSS v3.1

8.8

High

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions RT versions 5.0.0 through 5.0.9 RT versions 6.0.0 through 6.0.2
Description An authenticated user can craft input that is incorporated into database queries without proper validation, potentially allowing them to read or modify data in the database via SQL injection, which is a technique where malicious SQL statements are inserted into entry fields for execution.
Recommendations Update versions 5.0.0 through 5.0.9 to version 5.0.10. Update versions 6.0.0 through 6.0.2 to version 6.0.3. Restrict account access to trusted users as a temporary workaround.

Exploit

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-41075
GHSA-7VF8-XV7W-97C6
USN-8506-1

Affected Products

Rt