{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-30995", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-15T17:23:41.420Z", "dateReserved": "2026-03-09T00:00:00.000Z", "datePublished": "2026-04-15T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-15T16:41:19.656Z"}, "descriptions": [{"lang": "en", "value": "Slah CMS v1.5.0 and below was discovered to contain a SQL injection vulnerability via the id parameter in the vereador_ver.php endpoint."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://cve.joaopaulodeoliveira.dev/cve.php/reserved/slah-informatica-sql-injection"}, {"url": "https://cve.joaopaulodeoliveira.dev/cve.php/published/CVE-2026-30995"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-89", "lang": "en", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-04-15T17:23:22.347655Z", "id": "CVE-2026-30995", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-15T17:23:41.420Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-30995", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-15T17:23:22.347655Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-89", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-15T17:23:17.347Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://cve.joaopaulodeoliveira.dev/cve.php/reserved/slah-informatica-sql-injection"}, {"url": "https://cve.joaopaulodeoliveira.dev/cve.php/published/CVE-2026-30995"}], "descriptions": [{"lang": "en", "value": "Slah CMS v1.5.0 and below was discovered to contain a SQL injection vulnerability via the id parameter in the vereador_ver.php endpoint."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-15T16:41:19.656Z"}}}, "cveMetadata": {"cveId": "CVE-2026-30995", "state": "PUBLISHED", "dateUpdated": "2026-04-15T17:23:41.420Z", "dateReserved": "2026-03-09T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-15T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Slah CMS v1.5.0 and below was discovered to contain a SQL injection vulnerability via the id parameter in the vereador_ver.php endpoint."}], "id": "CVE-2026-30995", "lastModified": "2026-04-17T15:37:20.857", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 4.7, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-04-15T17:17:04.337", "references": [{"source": "cve@mitre.org", "url": "https://cve.joaopaulodeoliveira.dev/cve.php/published/CVE-2026-30995"}, {"source": "cve@mitre.org", "url": "https://cve.joaopaulodeoliveira.dev/cve.php/reserved/slah-informatica-sql-injection"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-89"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,1.5.0]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "slah_cms", "vendor": "slah_cms"}], "analysis": {"en": {"generated_at": "2026-04-15T22:25:08.770561+00:00", "value": {"mitigation_remediation": ["Upgrade to the most recent Slah CMS release beyond 1.5.0", "Implement input validation or prepared statements for the id parameter in vereador_ver.php to prevent SQL injection", "Limit access to the vereador_ver.php endpoint to authenticated administrators or block it from public exposure"], "summary": {"action": "Apply Patch", "impact": "SQL Injection"}, "threat_synthesis": {"affected_systems": "Any deployment of Slah CMS running version 1.5.0 or older is vulnerable. The affected code resides in vereador_ver.php and is accessible through the web interface. Administrators should confirm the CMS version and review exposure of this endpoint.", "description_and_impact": "A flaw in Slah CMS versions 1.5.0 and earlier permits unauthenticated users to inject arbitrary SQL through the id parameter on the vereador_ver.php endpoint. The injection can read, modify, or delete database records, exposing confidential data and compromising application integrity. The weakness corresponds to CWE\u201189.", "risk_and_exploitability": "The CVSS score of 8.6 indicates high severity. With no EPSS data and absence from the KEV catalog, precise exploitation likelihood remains unknown, yet the flaw is readily exploitable over HTTP by any user who can reach the site. Because the id parameter is user\u2011controlled and no authentication is required, attackers can perform data exfiltration, corruption, or deletion. The risk remains significant for unpatched systems."}}}}, "created": "2026-04-15T21:02:30.814451+00:00", "title": "SQL Injection via vereador_ver.php in Slah CMS", "updated": "2026-04-15T22:30:16.078333+00:00", "vendors": ["slah_cms", "slah_cms$PRODUCT$slah_cms"]}