CVE-2026-4404 | GoHarbor up to 2.15.0 Web UI hard-coded credentials (ID 1937)

Inserito da Angelo Barbosa | Mar 23, 2026 | CVE

A vulnerability was found in GoHarbor Harbor up to 2.15.0. It has been declared as critical. Affected by this issue is some unknown functionality of the component Web UI. Executing a manipulation can lead to hard-coded credentials.

This vulnerability is registered as CVE-2026-4404. It is possible to launch the attack remotely. No exploit is available.

It is advisable to implement a patch to correct this issue.

CVE-2026-4404 | GoHarbor up to 2.15.0 Web UI hard-coded credentials (ID 1937)

Post correlati

CVE-2022-1206 | AdRotate Plugin up to 5.13.2 on WordPress Double Extension unrestricted upload

CVE-2024-6427 | MESbook 20221021.03 message cross site scripting

CVE-2021-43584 | Nagios NCPA up to 2.3.x Tail Event Logs name cross site scripting (Issue 830)

CVE-2025-1459 | gpriday Page Builder by SiteOrigin Plugin up to 2.31.4 on WordPress Embedded Video Widget cross site scripting