Threats Tagged 'cve-2026-3957'
View all threats tagged with 'cve-2026-3957'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-3957'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-3957: SQL Injection in xierongwkhd weimai-wetappCVE-2026-3957 0 CVE-2026-3957 is a medium severity SQL injection vulnerability found in the xierongwkhd weimai-wetapp product, specifically in the getLikeMovieList function of HomeController. java. The flaw allows remote attackers to manipulate the 'cat' argument to execute SQL injection attacks without requiring user interaction but requiring high privileges. The vulnerability affects versions up to commit 5fe9e8225be4f73f2c5087f134aff657bdf1c6f2. Although an exploit has been published, no known active exploitation in the wild has been reported yet. The vendor has not responded to the early report, and no patch is currently available. The rolling release model complicates version tracking and patch deployment. Organizations using this product should prioritize code review and input validation to mitigate risk. Join the discussion | CVE Database V5 | 03/11/2026, 21:02:08 UTC Added: 03/11/2026, 21:14:48 UTC |
Showing 1 to 1 of 1 result