CVE-2026-3022 in Application Webinformação

Sumário

de MITRE • 16/03/2026

Non-relational SQL injection vulnerability (NoSQLi) in the Wakyma web application, specifically in the endpoint 'vets.wakyma.com/hospitalization/generate-hospitalization-summary'. This vulnerability could allow an authenticated user to alter a POST request to the affected endpoint for the purpose of injecting special NoSQL commands, resulting in the attacker being able to obtain customer reports.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

INCIBE

Reservar

23/02/2026

Divulgação

16/03/2026

Moderação

aceite

Entrada

VDB-351233

CPE

pronto

CWE

CWE-943 (confirmado)

CVSS

6.5 (NVD)

EPSS

0.00039

KEV

não

Atividades

muito baixo

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-3022
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-3022
CVE Details	https://www.cvedetails.com/cve/CVE-2026-3022/

◂ Voltar Visão Geral Próximo ▸

Do you need the next level of professionalism?

Upgrade your account now!