Primary

Context

MeCODE Envanty Authorization Bypass Vulnerability Allowing Parameter Injection

Vulnerability

A vulnerability allowing authorization bypass through user-controlled keys has been identified in MeCODE Envanty, prior to version 1.0.6. This issue enables parameter injection, potentially allowing cyber attackers to execute their attacks by exploiting this vulnerability.

Impact

Exploitation of this vulnerability could lead to unauthorized actions being performed within the application, potentially allowing attackers to manipulate data or application behavior.

Remediation

Users are advised to upgrade to version 1.0.6 or later.

Added: Feb 19, 2026, 7:03 PM

Updated: Feb 19, 2026, 7:03 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

3.2

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

3.2

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MeCODE Envanty Authorization Bypass Vulnerability Allowing Parameter Injection

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating