CVE-2026-15804
Severity CVSS v4.0:
HIGH
Type:
CWE-89
SQL Injection
Publication date:
15/07/2026
Last modified:
15/07/2026
Description
The HCM developed by MetaGuru has a SQL Injection vulnerability. Authenticated remote attackers can inject SQL commands via specific parameters, thereby compromising the confidentiality, integrity, and availability of database data.
Impact
Base Score 4.0
8.70
Severity 4.0
HIGH
Base Score 3.x
8.80
Severity 3.x
HIGH



