High severity7.3NVD Advisory· Published Apr 5, 2026· Updated Apr 30, 2026
CVE-2026-5577
CVE-2026-5577
Description
A vulnerability has been found in Song-Li cross_browser up to ca690f0fe6954fd9bcda36d071b68ed8682a786a. This affects an unknown part of the file flask/uniquemachine_app.py of the component details Endpoint. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The vendor was contacted early about this disclosure but did not respond in any way.
Affected products
1- cpe:2.3:a:songli:cross_browser_fingerprinting:*:*:*:*:*:*:*:*Range: <=2022-01-17
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/wing3e/public_exp/issues/24nvdExploitMitigationThird Party Advisory
- vuldb.com/submit/783502nvdThird Party AdvisoryVDB Entry
- vuldb.com/vuln/355347nvdThird Party AdvisoryVDB Entry
- vuldb.com/vuln/355347/ctinvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.