Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.9
Fujian Smart Integrated Management Platform System: SQL Injection Risk in XCamera Function
CVE-2026-2821
Summary
A security weakness in the Fujian Smart Integrated Management Platform System version 7.5 allows hackers to inject malicious SQL code, potentially giving them access to sensitive data. This could happen when a specific input is manipulated, and a public exploit is available. Update to the latest version to fix this vulnerability.
Original title
A weakness has been identified in Fujian Smart Integrated Management Platform System up to 7.5. Impacted is an unknown function of the file /Module/CRXT/Controller/XCamera.ashx. This manipulation o...
Original description
A weakness has been identified in Fujian Smart Integrated Management Platform System up to 7.5. Impacted is an unknown function of the file /Module/CRXT/Controller/XCamera.ashx. This manipulation of the argument ChannelName causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks.
nvd CVSS2.0
7.5
nvd CVSS3.1
7.3
nvd CVSS4.0
6.9
Vulnerability type
CWE-74
Injection
CWE-89
SQL Injection
Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026