A vulnerability classified as critical was found in SocialEngine up to 7.8.0 . This vulnerability affects unknown code of the file /activity/index/get-memberall . The manipulation of the argument text results in sql injection. This vulnerability is reported as CVE-2026-41460 . The attack can be launched remotely. No exploit exists.