CVE Catalog
CVE-2026-57631
HighCVSS 7.6Exploitation Probability (EPSS)
Low risk0.28%
20th percentile - higher than 20% of all known CVEs
Summary
SQL Injection vulnerability in Popup box versions up to 6.0.1 allows an administrator to inject malicious SQL code. An attacker with admin privileges can manipulate database queries.
Risk Assessment
The risk involves unauthorized access, modification, or deletion of data by an administrator, potentially compromising system integrity and confidentiality.
Recommendation
Immediately update the Popup box component to a version later than 6.0.1 where the vulnerability is patched.
Original NVD description (English source)
Administrator SQL Injection in Popup box <= 6.0.1 versions.

