All news

SQL injection

(5 articles)

May 23, 2026

Drupal Core SQL Injection Bug Hits CISA KEV

A Drupal core SQL injection vulnerability is actively exploited and added to CISA's KEV catalog. Here's what developers need to patch right now.

May 22, 2026

Drupal CVE-2026-9082: Critical SQL Injection Now Exploited

Hackers are actively exploiting Drupal's critical SQL injection flaw CVE-2026-9082. Learn which versions are affected and how to patch immediately.

May 15, 2026

Avada Builder Flaws Enable WordPress Credential Theft

Two Avada Builder plugin vulnerabilities affect 1M+ WordPress sites, enabling file reads and SQL injection attacks. Learn what's exposed and how to patch now.

LiteLLM CVE-2026-42208 SQL Injection Exploited Fast

April 29, 2026

LiteLLM CVE-2026-42208 SQL Injection Exploited Fast

LiteLLM CVE-2026-42208 SQL injection was actively exploited within 36 hours of disclosure. Learn how it works and how to protect your AI infrastructure.

LiteLLM Pre-Auth SQLi CVE-2026-42208 Exploited

April 28, 2026

LiteLLM Pre-Auth SQLi CVE-2026-42208 Exploited

Hackers are actively exploiting a critical LiteLLM pre-auth SQL injection flaw. Learn how CVE-2026-42208 works and how to protect your AI gateway now.