CVE-2026-48242 – Open ISES Tickets < 3.44.2 Hardcoded MySQL Database Credentials in import_mdb.php

admin
May 21, 2026
Wire

CVE ID :CVE-2026-48242

Published : May 21, 2026, 6:16 p.m. | 59 minutes ago

Description :Open ISES Tickets before 3.44.2 contains hardcoded MySQL database connection credentials (host, username, password, database name) in import_mdb.php. The credentials are embedded in source code committed to the public repository, allowing any reader of the source to obtain valid configuration values that may match deployed installations.

Severity: 9.2 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more… To Read More Visit Read More

Related Posts

CVE-2026-9051 – Authentication Bypass Vulnerability in NI SystemLink Enterprise

CVE-2026-49367 – JetBrains IntelliJ IDEA Command Execution Vulnerability

CVE-2026-47744 – Shopper: Authorization bypass and RBAC privilege escalation in team settings