Skip to content

CVE lookup

CVE-2026-49352

Pruva has a verified reproduction for CVE-2026-49352: 9router hardcoded default fallback JWT secret allows authentication bypass. The canonical evidence record is REPRO-2026-00217.

REPRO

REPRO-2026-00217

Package

decolua/9router · github

Severity

CRITICAL

Status

published