Post Date: 2026/07/16

【Vulnerability Alert】Broad Information Management Consultants|ERP App - Use of Hard-coded Credentials

  • Subject: 【Vulnerability Alert】Broad Information Management Consultants|ERP App - Use of Hard-coded Credentials


  • Description:
    • Forwarded TWCERT/CC Security Alert TWCERTCC-200-202607-00000004
    • 【Broad Information Management Consultants|ERP App - Use of Hard-coded Credentials 】(CVE-2026-14807, CVSS: 9.8) The ERP App developed by Broad Information Management Consultants contains a Use of Hard-coded Credentials vulnerability. An unauthenticated remote attacker can obtain database credentials and passwords within the code.
  • Affected Platforms:
    • ERP App
  • Recommended Actions:
    • Contact the vendor for patching
  • References:

Computer and Communication Center
Network Systems Division Sincerely