{"vulnerability": "CVE-2026-14807", "sightings": [{"uuid": "496375f0-c543-4359-86d9-d2df2c07fe0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpxmsdqm5f2s", "content": "CVE-2026-14807 - erp app\nThe PROG MIS ERP App stores its login credentials directly in the code, which can be accessed by unauthorized users. This allows them to log in to the app and potentially view\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#erpapp #progmis #CVE #infosec", "creation_timestamp": "2026-07-06T08:02:04.759745Z"}, {"uuid": "c93e6ac6-743b-4379-83c9-1eb9c1abade3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxnj6vp2d2n", "content": "CVE-2026-14807 - PROG MIS\uff5cERP App - Use of Hard-coded Credentials\nCVE ID : CVE-2026-14807\n \n Published : July 6, 2026, 7:09 a.m. | 38\u00a0minutes ago\n \n Description : ERP App developed by PROG MIS has a Use of Hard-coded Credentials vulnerability, allowing unauthenticated remote a...", "creation_timestamp": "2026-07-06T08:14:51.301629Z"}, {"uuid": "1d83dbbf-5308-4781-a142-4fc933c41f17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14807", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116872211939531878", "content": "CVE-2026-14807: CRITICAL hard-coded credentials in PROG MIS ERP App allow unauthenticated remote access to source code &amp; DB creds. No patch available \u2014 restrict access &amp; monitor activity. CVSS 9.3 https://radar.offseq.com/threat/cve-2026-14807-cwe-798-use-of-hard-coded-credentia-f736ee8ed603a6fe #OffSeq #CVE202614807 #ERP #infosec", "creation_timestamp": "2026-07-06T09:00:30.113614Z"}, {"uuid": "6d9b8ad3-e8d0-4175-9390-3a0e05cf3251", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14807", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mpxq2tzoht24", "content": "PROG MIS ERP App hit by CRITICAL vuln (CVE-2026-14807): hard-coded creds let attackers access code &amp; DB. No patch \u2014 restrict access, monitor ERP activity. \ud83d\udea8 https://radar.offseq.com/threat/cve-2026-14807-cwe-798-use-of-hard-coded-credentia-f736ee8ed603a6fe #OffSeq #CVE202614807 #ERPsecurity", "creation_timestamp": "2026-07-06T09:00:31.800624Z"}, {"uuid": "c7bf77cd-a524-4447-a166-d1627614239a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://www.twcert.org.tw/en/cp-139-11024-c5c1a-2.html", "content": "", "creation_timestamp": "2026-07-06T09:45:04.255767Z"}]}