CVE-2026-7041 | 666ghj MiroFish up to 0.1.2 Werkzeug Debugger PIN /console SECRET information disclosure (Issue 483)

A vulnerability, which was classified as problematic, has been found in 666ghj MiroFish up to 0.1.2. The impacted element is an unknown function of the file /console of the component Werkzeug Debugger PIN Handler. Performing a manipulation of the argument SECRET results in information disclosure.

This vulnerability is cataloged as CVE-2026-7041. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is suggested to use restrictive firewalling.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-7041 | 666ghj MiroFish up to 0.1.2 Werkzeug Debugger PIN /console SECRET information disclosure (Issue 483)

Post correlati

CVE-2025-9583 | Comfast CF-N1 2.6.0 /usr/bin/webmgnt ping_config command injection

CVE-2024-13457 | theeventscalendar Event Tickets and Registration Plugin up to 5.18.1 on WordPress Object Reference tc-order-id access control

CVE-2024-2284 | boyiddha Automated-Mess-Management-System 1.0 Chat Book /member/chat.php msg cross site scripting

CVE-2025-54903 | Microsoft