{"uuid": "688e40cf-0b21-464e-8a79-c2cf38892fce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49352", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mprk4i62nu2j", "content": "CVE-2026-49352 - 9router\n9router's default secret is hardcoded and publicly known, allowing unauthorized users to access the dashboard and API if the server's JWT secret is not set. This vulnerability\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#9router #decolua #npm #CVE #infosec", "creation_timestamp": "2026-07-03T21:58:06.747307Z"}