CVE-2026-46446 | Alinto SOGo up to 5.12.6 c_password sql injection

May 14, 2026 Yanac

A vulnerability, which was classified as critical, was found in Alinto SOGo up to 5.12.6. Affected by this vulnerability is an unknown functionality. The manipulation of the argument c_password results in sql injection.

This vulnerability is reported as CVE-2026-46446. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More

CVE-2026-44418 | phili67 ecclesiacrm up to 8.0.0 Query Parameter ValidateInput sql injection (GHSA-vmgq-gpf9-mjjj)
CVE-2026-46445 | Alinto SOGo up to 5.12.6 sql injection