Skip to main content
hadzah
Cve
3 posts
2026
CVE-2026-49344 Mercator : Leak PII via JSON DSL
5/21/26
PII Extraction via JSON DSL query For PoC, check my github : https://github.com/hadhub/CVE-2026-49344-Mercator-JSON-DSL The advisory : …
cve
web
open-source
mercator
Read more
CVE-2026-49345 Mercator : SSRF To Conditional RCE
5/21/26
SSRF inside Provider feature For PoC, check my github : https://github.com/hadhub/CVE-2026-49345-Mercator-SSRF The advisory : …
cve
web
open-source
mercator
Read more
CVE-2026-27639 Mercator : Account Takeover via Stored XSS
2/21/26
Description A low-privileged user (with the User role) can achieve a full administrator account takeover on Mercator by injecting a …
cve
web
open-source
mercator
Read more
All Tags
Back to Home
Menu