CyberRota
← Ana sayfaya dön

CVE-2026-44172

CRITICAL · CVSS 9.8 EPSS %0.28 Public Exploit

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-12T18:16:34.123 · Çekilme zamanı: 2026-06-30T12:18:29.618664+00:00

CyberRota Yorumu

SQL Injection riski içeriyor.

Public Exploit Sinyali

Bu CVE için açıklama veya referanslarda public exploit / PoC / GitHub / Metasploit sinyali tespit edildi.

GitHub PoC Linkleri
github.com

Not: Bu bağlantılar yalnızca güvenlik araştırması ve doğrulama amacıyla listelenmiştir.

CVE
CVE-2026-44172
Severity
CRITICAL
CVSS
9.8
EPSS
%0.28

Orijinal NVD Açıklaması

MariaDB server is a community developed fork of MySQL server. In versions 3.3.18 and 3.4.8, an application that was taking non-validated user input, escaping it with mysql_real_escape_string() and sending it to the database using text protocol and big5 character set was vulnerable to SQL injections, even though mysql_real_escape_string() was supposed to prevent them. This issue has been patched in versions 3.3.19 and 3.4.9.