Critical SQL Injection Vulnerability in SALESmanago & Leadoo Plugin
A critical SQL injection vulnerability, CVE-2026-54822, has been discovered in the SALESmanago & Leadoo plugin versions up to 3.11.2. This vulnerability has a CVSS score of 8.5, indicating high severity. Although not actively exploited, it poses a significant risk due to its potential for unauthorized data access. Immediate patching to version 3.11.3 or later is recommended.