CVE 9.3 CRITICAL

BorG Technology Corporation｜Borg SPM 2007 – SQL Injection_CVE-2026-6887

April 23, 2026 invoker category_cve

9.3 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.

AI Analysis

SQL Injection vulnerability allowing unauthenticated remote attackers to inject arbitrary SQL commands

Basic Information

ID CVE-2026-6887

Source twcert

Published Apr 23, 2026 at 09:30

Modified Apr 23, 2026 at 09:31

Affected Product

Vendor BorG Technology Corporation

Product Borg SPM 2007

Affected Versions BorG Technology Corporation Borg SPM 2007 0

CWE Classification

CWE-89

AI Assessment

AI Score 9.3 / 10

AI Severity Critical

Vendor BorG Technology Corporation

Product Borg SPM 2007

References

{
    "lastseen": "",
    "description": "Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.",
    "published": "2026-04-23T09:30:29.670Z",
    "modified": "2026-04-23T09:31:41.817Z",
    "type": "cve",
    "title": "BorG Technology Corporation\uff5cBorg SPM 2007 - SQL Injection",
    "source": "twcert",
    "references": "https://www.twcert.org.tw/tw/cp-132-10861-b8709-1.html\nhttps://www.twcert.org.tw/en/cp-139-10863-2f48e-2.html",
    "id": "CVE-2026-6887",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89"
    ],
    "cvelist": null,
    "sourceData": "BorG Technology Corporation Borg SPM 2007 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Borg SPM 2007",
    "version": "0",
    "vendor": "BorG Technology Corporation",
    "ai_description": "SQL Injection vulnerability allowing unauthenticated remote attackers to inject arbitrary SQL commands",
    "ai_severity": "Critical",
    "ai_vendor": "BorG Technology Corporation",
    "ai_product": "Borg SPM 2007",
    "ai_version": "0",
    "ai_score": 9.3
}

💭 Join the Security Discussion ❌ Cancel Reply