Vulnerabilities

Report: CVE-2026-7042 - 666ghj MiroFish REST API Endpoint init.py create_app missing authentication

2026-04-27 0 views admin

CVE ID :CVE-2026-7042 Published : April 26, 2026, 10:17 p.m. | 1 hour, 15 minutes ago Description :A flaw has been found in 666ghj MiroFish up to 0.1.2. This affects the function create_app of the file backend/app/__init__.py of the component REST API Endpoint. Executing a manipulation can lead to missing authentication. It is possible to launch the attack remotely. The exploit has been published and may be used. The project was informed of the problem early through an issue report but has not responded yet. Severity: 7.5 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-7042

Severity

HIGH

Published

April 26, 2026

🏷️ Tags

report666ghjmirofishendpoint__init__create_appmissingauthenticationcvecve-2026-7042

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2026-7042 - 666ghj MiroFish REST API Endpoint __init__.py create_app missing authentication

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-33277 - LogonTracer OS Command Injection Vulnerability - 2025 Update

Report: CVE-2026-7067 - D-Link DIR-822 udhcpd DHCP Service dhcpd.c system command injection

Report: CVE-2026-42363 - GeoVision GV-IP Device Utility Device Authentication insufficient encryption vul

Report: Update: CVE-2026-33566 - LogonTracer Cipher Injection Vulnerability

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

Report: CVE-2026-7042 - 666ghj MiroFish REST API Endpoint init.py create_app missing authentication