CRITICALVulnerability
Verified
Global

NVD CRITICAL: CVE-2026-23696 — Windmill CE and EE versions 1.276.0 through 1.603.2 contain an SQL injection vul...

Tuesday, April 7, 2026 at 05:16 PM UTC·Source: NIST NVD

Updated: Tuesday, April 7, 2026 at 05:17 PM UTC

Executive Summary

Windmill CE and EE versions 1.276.0 through 1.603.2 contain an SQL injection vulnerability in the folder ownership management functionality that allows authenticated attackers to inject SQL through the owner parameter. An attacker can use the injection to read sensitive data such as the JWT signing secret and administrative user identifiers, forge an administrative token, and then execute arbitrar

Analysis

Windmill CE and EE versions 1.276.0 through 1.603.2 contain an SQL injection vulnerability in the folder ownership management functionality that allows authenticated attackers to inject SQL through the owner parameter. An attacker can use the injection to read sensitive data such as the JWT signing secret and administrative user identifiers, forge an administrative token, and then execute arbitrary code via the workflow execution endpoints. CVSS Score: 9.9. Published: 2026-04-07T17:16:27.247.

Indicators of Compromise (1)

CVE (1)
CVE-2026-23696
NVDMITRE CVE
Source Attribution

Originally published by NIST NVD on Apr 7, 2026. Verified by: NIST.

Related Threats

CRITICALVulnerabilityNEW

Anthropic Unveils ‘Claude Mythos’ — A Cybersecurity Breakthrough That Could Also Supercharge Attacks

New AI model drives Project Glasswing, a effort to secure critical software before advanced capabilities fall into the wrong hands. The post Anthropic Unveils ‘Claude Mythos’ — A Cybersecurity Breakthrough That Could Also Supercharge Attacks appeared first on SecurityWeek .

SecurityWeek
CRITICALVulnerabilityNEW

Anthropic Unveils ‘Claude Mythos’ – A Cybersecurity Breakthrough That Could Also Supercharge Attacks

New AI model drives Project Glasswing, a effort to secure critical software before advanced capabilities fall into the wrong hands. The post Anthropic Unveils ‘Claude Mythos’ – A Cybersecurity Breakthrough That Could Also Supercharge Attacks appeared first on SecurityWeek .

SecurityWeek
MEDIUMVulnerability

A Little Bit Pivoting: What Web Shells are Attackers Looking for?, (Tue, Apr 7th)

Webshells remain a popular method for attackers to maintain persistence on a compromised web server. Many "arbitrary file write" and "remote code execution" vulnerabilities are used to drop small files on systems for later execution of additional payloads. The names of these files keep changing and are often chosen to "fit in" with other files. Webshells themselves are also often used by parasitic

SANS ISC