Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Tue, 07 Jul 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Arbitrary Code Execution via SQL Injection in GoAdmin Sort-Type Parameter |
Mon, 06 Jul 2026 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | SQL Injection in GoAdmin 1.2.26 via __sort_type Parameter |
Mon, 06 Jul 2026 07:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | SQL Injection in GoAdmin 1.2.26 via __sort_type Parameter |
Sun, 05 Jul 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | SQL Injection Vulnerability in GoAdminGroup GoAdmin Enables Remote Code Execution |
Sun, 05 Jul 2026 06:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | SQL Injection Vulnerability in GoAdminGroup GoAdmin Enables Remote Code Execution |
Sat, 04 Jul 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | SQL Injection via __sort_type Parameter in GoAdmin |
Sat, 04 Jul 2026 03:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | SQL Injection via __sort_type Parameter in GoAdmin |
Fri, 03 Jul 2026 12:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | SQL Injection in GoAdmin Admin Interface Allows Remote Code Execution |
Fri, 03 Jul 2026 02:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | SQL Injection in GoAdmin Admin Interface Allows Remote Code Execution |
Thu, 02 Jul 2026 14:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | SQL Injection via __sort_type Parameter Allowing Remote Code Execution in GoAdminGroup GoAdmin |
Thu, 02 Jul 2026 00:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | SQL Injection via __sort_type Parameter Allowing Remote Code Execution in GoAdminGroup GoAdmin |
Wed, 01 Jul 2026 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-89 | |
| Metrics |
cvssV3_1
|
Wed, 01 Jul 2026 17:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | SQL Injection vulnerability in GoAdminGroup GoAdmin (last release v1.2.26) allows a remote attacker to execute arbitrary code and obtain sensitive information via the the __sort_type URL parameter on all /admin/info/{table} endpoints | |
| References |
|
Subscriptions
No data.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2026-07-01T18:07:49.066Z
Reserved: 2026-06-08T00:00:00.000Z
Link: CVE-2026-51946
Updated: 2026-07-01T18:07:38.731Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-07T15:15:04Z