CVE-2026-45336 | StratonWebDesigners HireFlow up to 1.2 Session Management app.py role/user_id hard-coded key (EUVD-2026-44987)
A vulnerability labeled as critical has been found in StratonWebDesigners HireFlow up to 1.2. This issue affects some unknown processing of the file app.py of the component Session Management. Such manipulation of the argument role/user_id leads to use of hard-coded cryptographic key
.
This vulnerability is uniquely identified as CVE-2026-45336. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More