CVE-2026-11321: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in pluginsGLPI datainjection
CVE-2026-11321 is a high-severity SQL injection vulnerability in the DataInjection plugin for GLPI version 2.15.6. The plugin improperly concatenates user-supplied CSV field values directly into SQL…
Read the full article18h agoen
You might also wanna read

WAF - WAF Release - 2026-06-09
This release introduces new detections for a critical SQL injection vulnerability in Drupal installations utilizing PostgreSQL (CVE-2026-908
Cloudflare·1mo ago

WAF - WAF Release - 2026-06-15
This week's release introduces new managed protection to address a critical SQL injection vulnerability in Ghost CMS (CVE-2026-26980) and a
Cloudflare·26d ago
CVE-2026-9082 Drupal Core PostgreSQL SQL Injection Overview and Takeaways
A critical vulnerability in Drupal Core, tracked as CVE-2026-9082, affects Drupal deployments using a PostgreSQL database. The issue allows
NetSPI·1mo ago

Comments
Sign in to join the conversation.
No comments yet. Be the first.