CVE-2026-5454 | GRID Organiser App up to 1.0.5 on Android co.gridapp.organiser file res/raw/app.json SegmentWriteKey hard-coded key

Inserito da Angelo Barbosa | Apr 2, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in GRID Organiser App up to 1.0.5 on Android. Impacted is an unknown function of the file file res/raw/app.json of the component co.gridapp.organiser. Performing a manipulation of the argument SegmentWriteKey results in use of hard-coded cryptographic key
.

This vulnerability is identified as CVE-2026-5454. The attack is only possible with local access. Additionally, an exploit exists.

CVE-2026-5454 | GRID Organiser App up to 1.0.5 on Android co.gridapp.organiser file res/raw/app.json SegmentWriteKey hard-coded key

Post correlati

CVE-2024-50510 | Web and Print Design AR for Woocommerce Plugin up to 6.2 on WordPress unrestricted upload

CVE-2024-57020 | TOTOLINK X5000R 9.1.0cu.2350_B20230313 setWiFiScheduleCfg sMinute os command injection

CVE-2022-45811 | WeyHan Ng Post Teaser Plugin up to 4.1.5 on WordPress authorization

CVE-2024-55985 | ydesignservices YDS Support Ticket System Plugin up to 1.0 on WordPress sql injection