All 4 CVE vulnerabilities found in MiroFish, with AI-generated Chinese analysis, references, and POCs.
Vendor: 666ghj
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-7059 | 666ghj MiroFish Query Parameter simulation.py get_simulation_posts path traversal CWE-22 | 5.3 | Medium | 2026-04-26 |
| CVE-2026-7058 | 666ghj MiroFish Inter-Process Communication simulation_ipc.py SimulationIPCClient.send_command command injection CWE-77 | 7.3 | High | 2026-04-26 |
| CVE-2026-7042 | 666ghj MiroFish REST API Endpoint __init__.py create_app missing authentication CWE-306 | 7.3 | High | 2026-04-26 |
| CVE-2026-7041 | 666ghj MiroFish Werkzeug Debugger PIN console information disclosure CWE-200 | 3.7 | Low | 2026-04-26 |
All 4 known CVE vulnerabilities affecting MiroFish with full Chinese analysis, references, and POCs where available.