CVE-2026-3022
EUVD-2026-1239316.03.2026, 14:19
Non-relational SQL injection vulnerability (NoSQLi) in the Wakyma web application, specifically in the endpoint 'vets.wakyma.com/hospitalization/generate-hospitalization-summary'. This vulnerability could allow an authenticated user to alter a POST request to the affected endpoint for the purpose of injecting special NoSQL commands, resulting in the attacker being able to obtain customer reports.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.