CVE-2026-3023
Non-relational SQL injection vulnerability (NoSQLi) in the Wakyma web application, specifically in the endpoint 'vets.wakyma.com/pets/print-tags'. This vulnerability could allow an authenticated user to alter a POST request to the affected endpoint for the purpose of injecting NoSQL commands, allowing them to list both pets and owner names.
Vendor
Product
CWE
Yayın Tarihi
2026-03-16 14:19:45
Güncelleme
2026-03-19 20:04:19
Source Identifier
cve-coordination@incibe.es
KEV Date Added
-