CVE ID :CVE-2026-45749 Published : June 5, 2026, 6:17 p.m. | 57 minutes ago Description :Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. The `POST /users/totp/disable` and `POST /users/totp/backup-codes` endpoints in Termix prior...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-45749 - Termix's TOTP two-factor authentication can be disabled or bypassed using only the account password

VERWANDTEARTIKEL

CVE-2026-46400 - HAXCMS PHP has a File Upload Validation Bypass

CVE-2026-45779 - Open XDMoD Vulnerable to Unauthenticated SQL Injection Leading to Full Database Compromise

CVE-2026-46398 - HAX CMS Missing Secure Flag on Cookie

CVE-2026-45758 - Malicious code in guardrails-ai 0.10.1 (supply chain compromise)

CVE-2026-45777 - Open XDMoD Vulnerable to Unauthenticated Remote Code Execution (RCE) via OS Command Injection

CVE-2026-45778 - Open XDMoD Vulnerable to Reflected Cross-Site Scripting (XSS) in Password Reset