CVE-2026-39178
08.07.2026, 22:17
A SQL injection vulnerability in SOGo before 5.12.7 allows authenticated users to execute arbitrary SQL statements via the search parameter of the allContactSearch endpoint.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.