Unrated severityOSV Advisory· Published Jul 14, 2026
Debian sogo: A SQL injection vulnerability in SOGo before 5.12.7 allows authenticated users t…
CVE-2026-39179
Description
A SQL injection vulnerability in SOGo before 5.12.7 allows authenticated users to execute arbitrary SQL statements via the newPassword parameter in the password change functionality.
Affected products
3Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.