CVE-2026-34400 | Alerta up to 9.0.x Query String Search API sql injection (GHSA-8prr-286p-4w7j)

A vulnerability labeled as critical has been found in Alerta up to 9.0.x. Affected by this vulnerability is an unknown functionality of the component Query String Search API. Executing a manipulation can lead to sql injection.

The identification of this vulnerability is CVE-2026-34400. The attack may be launched remotely. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More