CVE-2026-11561 – SSTI in Soagen Informatics’ Apinizer

CVE ID :CVE-2026-11561

Published : June 11, 2026, 12:28 p.m. | 51 minutes ago

Description :Improper neutralization of special elements used in an expression language statement (‘expression language injection’) vulnerability in Soagen Informatics Technologies Software and Consulting Inc. Apinizer allows Code Injection.

This issue affects Apinizer: from 2026.04.0 before 2026.04.6.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-8406 – openSIS Classic 9.3 – Insecure Direct Object Reference in Sent Mail

CVE-2026-6338 – HTTP request smuggling in Kong Enteprise Gateway

CVE-2026-53723 – guzzlehttp/guzzle-services’ XML Request Serialization Vulnerable to XML Injection via CDATA Terminator

CVE-2026-53661 – boruta-server sent sensitive session cookies without the Secure attribute