Vulnerabilities

Report: CVE-2026-34747 - Payload has an SQL Injection via Query Handling

2026-04-01 0 views admin

CVE ID :CVE-2026-34747 Published : April 1, 2026, 8:16 p.m. | 39 minutes ago Description :Payload is a free and open source headless content management system. Prior to version 3.79.1, certain request inputs were not properly validated. An attacker could craft requests that influence SQL query execution, potentially exposing or modifying data in collections. This issue has been patched in version 3.79.1. Severity: 8.5 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-34747

Severity

HIGH

Published

April 1, 2026

🏷️ Tags

report34747payloadinjectionqueryhandlingpublishedminutescvesql injection

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2026-34747 - Payload has an SQL Injection via Query Handling

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: Update: CVE-2026-34518 - AIOHTTP: Cookie and Proxy-Authorization headers leaked on cross-origin redirect

Report: CVE-2025-66442 - Mbed TLS and TF-PSA-Crypto RSA Timing Side Channel - Complete Guide

Report: - Hi.Events: SQL Injection via Unvalidated sort_by Query Parameter in Multiple Rep... CVE-2026-34455

Report: Latest: CVE-2026-34746 - Payload has Authenticated SSRF via Upload Functionality

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting