{"uuid": "9cd352a8-8d7f-429f-a132-f00c7b2fc116", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40797", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116520794744579709", "content": "\ud83d\udd34 CRITICAL: CVE-2026-40797 in WebinarIgnition (\u22644.08.253) enables unauthenticated Blind SQL Injection. No patch yet \u2014 use WAF, validate inputs, restrict DB perms. High confidentiality risk. Details: https://radar.offseq.com/threat/cve-2026-40797-cwe-89-improper-neutralization-of-s-1958ecd4 #OffSeq #SQLInjection #WebinarIgnition", "creation_timestamp": "2026-05-05T07:30:29.069409Z"}