Code Injection in Mendix Studio Pro 10 and Mendix Studio Pro 11 - CVE-2026-48192
Published: July 1, 2026
Mendix Studio Pro 10
Mendix Studio Pro 11
Detailed vulnerability description
The vulnerability allows a remote user to execute arbitrary code on the target system.
The vulnerability exists due to improper input validation. A remote administrator can trick a victim to open a specially crafted file and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.