Bukts Auth Bypass

Source repositories

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2026-12183	Nefteprodukttekhnika BUK TS-G Gas Station Automation System	Cri	0.64	9.8	—		Jun 13, 2026	Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP…

CVE-2026-12183CriJun 13, 2026
Nefteprodukttekhnika
BUK TS-G Gas Station Automation System
risk 0.64cvss 9.8epss —
Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP…