CRITICAL: Open ISES Tickets <3.44.2 has hardcoded MySQL creds in loader.php (CVE-2026-48241), exposing DBs to attack if reachable. Restrict file & DB access, rotate creds now. No official fix yet. https://radar.offseq.com/threat/cve-2026-48241-use-of-hard-coded-credentials-in-op-e794805b #OffSeq #Vulnerability #MySQL #AppSec

]]>https://board.circlewithadot.net/topic/923c7495-1e4e-48c2-9de3-ec440fed5b41/critical-open-ises-tickets-lt-3.44.2-has-hardcoded-mysql-creds-in-loader.php-cve-2026-48241-exposing-dbs-to-attack-if-reachable.RSS for NodeMon, 25 May 2026 07:39:20 GMTThu, 21 May 2026 19:30:18 GMT60