CVE-2026-41167 | CyferShepard Jellystat up to 1.1.9 API Endpoint /api/getUserDetails sql injection (GHSA-fj7c-2p5q-g56m)

A vulnerability categorized as critical has been discovered in CyferShepard Jellystat up to 1.1.9. The impacted element is an unknown function of the file /api/getUserDetails of the component API Endpoint. Executing a manipulation can lead to sql injection.

This vulnerability is registered as CVE-2026-41167. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More