PT-2026-55872 · Prog Mis · Erp App

Leo Huang

+1

·

Published

2026-07-06

·

Updated

2026-07-06

·

CVE-2026-14807

CVSS v3.1

9.8

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions ERP App developed by PROG MIS (affected versions not specified)
Description The application contains hard-coded credentials, which are passwords or usernames embedded directly into the software source code. This allows unauthenticated remote attackers to log in, view the application code, and obtain the database account and password.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-14807

Affected Products

Erp App