[HIGH] Mautic is Vulnerable to SQL Injection through Contact Activity API Sorting

PKSA-frhs-vjy5-hffg CVE-2026-3105 GHSA-r5j5-q42h-fc93

Affected package: mautic/core

Affected version: >=7.0.0-alpha,<7.0.1|>=6.0.0-alpha,<6.0.8|>=2.10.0,<5.2.10

Reported by:
GitHub