CVE-2026-22240
The CVE-2026-22240 entry describes a vulnerability in BLUVOYIX (Bluspark) caused by improper password storage, exposing plaintext passwords via unauthenticated user APIs. An unauthenticated remote attacker could retrieve all user passwords by sending crafted HTTP requests to the vulnerable API, e...