CVE-2026-1618 | Universal Software FlexCity/Kiosk up to 1.0.35 authentication bypass

Inserito da Angelo Barbosa | Feb 13, 2026 | CVE

A vulnerability classified as critical has been found in Universal Software FlexCity and Kiosk up to 1.0.35. This affects an unknown part. Performing a manipulation results in authentication bypass using alternate channel.

This vulnerability is reported as CVE-2026-1618. The attack is possible to be carried out remotely. No exploit exists.

It is recommended to upgrade the affected component.

CVE-2026-1618 | Universal Software FlexCity/Kiosk up to 1.0.35 authentication bypass

Post correlati

CVE-2024-10097 | Loginizer Security and Loginizer Plugin up to 1.9.2 on WordPress improper authentication

CVE-2024-5542 | litonice13 Master Addons Plugin up to 2.0.6.1 on WordPress Navigation Menu Widget cross site scripting

CVE-2024-47047 | powermail Extension up to 7.5.0/8.5.0/10.9.0/12.4.0 on TYPO3 createAction resource injection

CVE-2024-20069 | MediaTek MT8797 Modem downgrade (MOLY01286330)