CVE-2026-3969: SQL Injection in FeMiner wms
CVE-2026-3969 is a medium severity SQL Injection vulnerability in FeMiner wms version 1. 0, specifically in the Basic Organizational Structure Module at /wms-master/src/basic/depart/depart_add_bg. php. The vulnerability arises from improper sanitization of the 'Name' argument, allowing remote attackers to inject malicious SQL commands without authentication or user interaction. The exploit is publicly available, but no known active exploitation has been reported. The vendor has not responded to disclosure attempts, and no patch is currently available. This vulnerability could lead to unauthorized data access, modification, or deletion, impacting confidentiality, integrity, and availability of the affected system. Organizations using FeMiner wms 1. 0 should prioritize mitigation to prevent potential exploitation. Countries with significant FeMiner wms deployments or critical infrastructure using this product are at higher risk.
AI Analysis
Technical Summary
CVE-2026-3969 identifies a SQL Injection vulnerability in FeMiner wms up to version 1.0, located in the Basic Organizational Structure Module within the file /wms-master/src/basic/depart/depart_add_bg.php. The flaw is triggered by manipulating the 'Name' parameter, which is not properly sanitized before being incorporated into SQL queries. This allows an unauthenticated remote attacker to inject arbitrary SQL commands, potentially leading to unauthorized data retrieval, modification, or deletion in the backend database. The vulnerability does not require any user interaction or privileges, making it easier to exploit. The CVSS v4.0 score of 6.9 reflects a medium severity, considering the network attack vector, low complexity, and no required authentication, but limited scope and impact on confidentiality, integrity, and availability. The vendor was contacted but has not issued any patch or response, and the exploit code is publicly available, increasing the risk of exploitation. No known active exploitation has been reported yet. The vulnerability affects only version 1.0 of FeMiner wms, a warehouse management system, which may be used in logistics and supply chain environments.
Potential Impact
The SQL Injection vulnerability in FeMiner wms 1.0 can have significant impacts on organizations relying on this software for warehouse management and logistics. Exploitation can lead to unauthorized access to sensitive organizational data, including potentially confidential business information stored in the database. Attackers could modify or delete critical data, disrupting operations and causing data integrity issues. In worst cases, attackers might escalate the attack to compromise the underlying database server or pivot to other internal systems. The lack of authentication and user interaction requirements increases the risk of automated mass exploitation attempts, especially since the exploit is publicly available. This can result in data breaches, operational downtime, and reputational damage. Organizations without timely mitigation or compensating controls remain vulnerable to these risks.
Mitigation Recommendations
Since no official patch is available from the vendor, organizations should implement immediate compensating controls. First, apply strict input validation and sanitization on the 'Name' parameter at the web application firewall (WAF) or reverse proxy level to block malicious SQL payloads. Employ parameterized queries or prepared statements if source code access and modification is possible to fix the root cause. Restrict network access to the affected module by limiting exposure to trusted IP addresses or VPNs. Monitor logs for unusual database query patterns or repeated attempts to exploit the vulnerable parameter. Conduct regular database backups to enable recovery in case of data tampering. Engage with the vendor for updates and consider migrating to alternative, supported warehouse management solutions if feasible. Additionally, implement network segmentation to isolate the affected system and reduce lateral movement risk.
Affected Countries
China, United States, Germany, Japan, South Korea, India, United Kingdom, France, Brazil, Russia
CVE-2026-3969: SQL Injection in FeMiner wms
Description
CVE-2026-3969 is a medium severity SQL Injection vulnerability in FeMiner wms version 1. 0, specifically in the Basic Organizational Structure Module at /wms-master/src/basic/depart/depart_add_bg. php. The vulnerability arises from improper sanitization of the 'Name' argument, allowing remote attackers to inject malicious SQL commands without authentication or user interaction. The exploit is publicly available, but no known active exploitation has been reported. The vendor has not responded to disclosure attempts, and no patch is currently available. This vulnerability could lead to unauthorized data access, modification, or deletion, impacting confidentiality, integrity, and availability of the affected system. Organizations using FeMiner wms 1. 0 should prioritize mitigation to prevent potential exploitation. Countries with significant FeMiner wms deployments or critical infrastructure using this product are at higher risk.
AI-Powered Analysis
Technical Analysis
CVE-2026-3969 identifies a SQL Injection vulnerability in FeMiner wms up to version 1.0, located in the Basic Organizational Structure Module within the file /wms-master/src/basic/depart/depart_add_bg.php. The flaw is triggered by manipulating the 'Name' parameter, which is not properly sanitized before being incorporated into SQL queries. This allows an unauthenticated remote attacker to inject arbitrary SQL commands, potentially leading to unauthorized data retrieval, modification, or deletion in the backend database. The vulnerability does not require any user interaction or privileges, making it easier to exploit. The CVSS v4.0 score of 6.9 reflects a medium severity, considering the network attack vector, low complexity, and no required authentication, but limited scope and impact on confidentiality, integrity, and availability. The vendor was contacted but has not issued any patch or response, and the exploit code is publicly available, increasing the risk of exploitation. No known active exploitation has been reported yet. The vulnerability affects only version 1.0 of FeMiner wms, a warehouse management system, which may be used in logistics and supply chain environments.
Potential Impact
The SQL Injection vulnerability in FeMiner wms 1.0 can have significant impacts on organizations relying on this software for warehouse management and logistics. Exploitation can lead to unauthorized access to sensitive organizational data, including potentially confidential business information stored in the database. Attackers could modify or delete critical data, disrupting operations and causing data integrity issues. In worst cases, attackers might escalate the attack to compromise the underlying database server or pivot to other internal systems. The lack of authentication and user interaction requirements increases the risk of automated mass exploitation attempts, especially since the exploit is publicly available. This can result in data breaches, operational downtime, and reputational damage. Organizations without timely mitigation or compensating controls remain vulnerable to these risks.
Mitigation Recommendations
Since no official patch is available from the vendor, organizations should implement immediate compensating controls. First, apply strict input validation and sanitization on the 'Name' parameter at the web application firewall (WAF) or reverse proxy level to block malicious SQL payloads. Employ parameterized queries or prepared statements if source code access and modification is possible to fix the root cause. Restrict network access to the affected module by limiting exposure to trusted IP addresses or VPNs. Monitor logs for unusual database query patterns or repeated attempts to exploit the vulnerable parameter. Conduct regular database backups to enable recovery in case of data tampering. Engage with the vendor for updates and consider migrating to alternative, supported warehouse management solutions if feasible. Additionally, implement network segmentation to isolate the affected system and reduce lateral movement risk.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-03-11T13:49:01.872Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 69b2e9fd2f860ef943be353d
Added to database: 3/12/2026, 4:29:49 PM
Last enriched: 3/12/2026, 4:44:04 PM
Last updated: 3/12/2026, 5:38:45 PM
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.