CVE-2026-3957
Received Received - Intake
SQL Injection in xierongwkhd weimai-wetapp Endpoint Allows Remote Exploit

Publication date: 2026-03-11

Last updated on: 2026-04-29

Assigner: VulDB

Description
A flaw has been found in xierongwkhd weimai-wetapp up to 5fe9e8225be4f73f2c5087f134aff657bdf1c6f2. This vulnerability affects the function getLikeMovieList of the file source-code/src/main/java/com/moke/wp/wx_weimai/controller/HomeController.java of the component Endpoint. Executing a manipulation of the argument cat can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be used. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The project was informed of the problem early through an issue report but has not responded yet.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-11
Last Modified
2026-04-29
Generated
2026-05-07
AI Q&A
2026-03-11
EPSS Evaluated
2026-05-05
NVD
CVE-2026-3957
EUVD
EUVD-2026-11405
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
xierongwkhd weimai-wetapp to 5fe9e8225be4f73f2c5087f134aff657bdf1c6f2 (inc)
xierongwkhd weimai-wetapp to 1.0.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-74 The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.
CWE-89 The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

[{'type': 'paragraph', 'content': 'CVE-2026-3957 is a SQL injection vulnerability found in the xierongwkhd weimai-wetapp application, specifically in the getLikeMovieList function of the HomeController.java file.'}, {'type': 'paragraph', 'content': "The vulnerability arises because the 'cat' parameter is passed through the application layersβ€”from the controller to the service and then to the MyBatis mapperβ€”without proper sanitization or use of parameterized queries."}, {'type': 'paragraph', 'content': "This improper handling allows an attacker to inject malicious SQL code remotely by manipulating the 'cat' argument, enabling execution of arbitrary SQL commands on the backend database."}, {'type': 'paragraph', 'content': 'Exploitation has been confirmed using automated tools like SQLMap, demonstrating both boolean-based blind and error-based SQL injection techniques, and allowing retrieval of sensitive information such as the database user with root privileges.'}] [1, 2, 3]


How can this vulnerability impact me? :

This vulnerability allows remote attackers to execute arbitrary SQL commands on the backend database with root-level privileges.

  • Data leakage: Attackers can extract sensitive information from the database.
  • Data modification: Attackers can alter or delete data, impacting data integrity.
  • Full system compromise: With root database access, attackers may escalate privileges or disrupt system availability.

The vulnerability affects confidentiality, integrity, and availability of the system, making it a critical security risk.


How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:

I don't know


How can this vulnerability be detected on my network or system? Can you suggest some commands?

[{'type': 'paragraph', 'content': 'This vulnerability can be detected by testing the /home/getLikeMovieList endpoint of the xierongwkhd weimai-wetapp application for SQL injection in the "cat" parameter.'}, {'type': 'paragraph', 'content': 'A practical detection method is to use the automated SQL injection tool SQLMap with specific options to test the "cat" parameter.'}, {'type': 'list_item', 'content': 'Use SQLMap with a crafted HTTP GET request targeting the vulnerable endpoint, for example:'}, {'type': 'list_item', 'content': 'sqlmap -u "http://target/home/getLikeMovieList?movieId=1&cat=Action*" --level 5 --risk 3 --threads 10 --batch --flush-session --current-user --skip-uri --string="specific response string"'}, {'type': 'paragraph', 'content': 'This command uses high risk and level settings, multiple threads, and batch mode to automate detection. It tests boolean-based blind and error-based SQL injection techniques to confirm exploitability.'}] [1, 3]


What immediate steps should I take to mitigate this vulnerability?

[{'type': 'paragraph', 'content': 'Currently, no known mitigations or patches have been provided by the vendor for this vulnerability.'}, {'type': 'paragraph', 'content': 'Immediate mitigation steps include:'}, {'type': 'list_item', 'content': 'Avoid using or exposing the vulnerable /home/getLikeMovieList endpoint until a fix is available.'}, {'type': 'list_item', 'content': 'Implement input validation and sanitization on the "cat" parameter to prevent SQL injection.'}, {'type': 'list_item', 'content': 'Use parameterized queries or prepared statements in the code to handle user inputs safely.'}, {'type': 'list_item', 'content': 'Restrict access to the affected component or apply network-level controls to limit exposure.'}, {'type': 'paragraph', 'content': 'Replacing or updating the affected component when a patch or update becomes available is recommended.'}] [2]


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart