SQL Injection Vulnerability in Prog Management System by PROG MIS
CVE-2026-14809

8.7HIGH

Key Information:

Vendor

Prog Mis

Vendor
CVE Published:
6 July 2026

What is CVE-2026-14809?

The Prog Management System developed by PROG MIS is vulnerable to a SQL Injection attack, which allows unauthenticated remote attackers to inject arbitrary SQL commands into the application. This vulnerability can potentially expose sensitive database contents, leading to unauthorized data access and manipulation. Organizations using this software should take immediate action to apply necessary security patches and implement best practices for database security.

Affected Version(s)

Prog Management System all

References

CVSS V4

Score:
8.7
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.