CVE Catalog

CVE-2026-57631

HighCVSS 7.6
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.28%

20th percentile - higher than 20% of all known CVEs

Summary

SQL Injection vulnerability in Popup box versions up to 6.0.1 allows an administrator to inject malicious SQL code. An attacker with admin privileges can manipulate database queries.

Risk Assessment

The risk involves unauthorized access, modification, or deletion of data by an administrator, potentially compromising system integrity and confidentiality.

Recommendation

Immediately update the Popup box component to a version later than 6.0.1 where the vulnerability is patched.

Original NVD description (English source)

Administrator SQL Injection in Popup box <= 6.0.1 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS