๐Ÿ” CVE Alert

CVE-2026-55500

CRITICAL 9.9

9router: Exposure of Sensitive Information and Unprotected Database Import/Export Allows Complete Credential Theft and Database Takeover

CVSS Score
9.9
EPSS Score
0.0%
EPSS Percentile
0th

9Router is an AI router & token saver. Prior to 0.4.80, the /api/settings/database endpoint allows full database export (containing all credentials, API keys, OAuth tokens, and settings) and full database import (complete overwrite) without any authentication requirement beyond the ALWAYS_PROTECTED middleware check, which only validates JWT or CLI token. This issue is fixed in version 0.4.80.

CWE CWE-200
Vendor decolua
Product 9router
Published Jul 10, 2026
Last Updated Jul 10, 2026
Stay Ahead of the Next One

Get instant alerts for decolua 9router

Be the first to know when new critical vulnerabilities affecting decolua 9router are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High

Affected Versions

decolua / 9router
< 0.4.80

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/decolua/9router/security/advisories/GHSA-qvfm-67h2-2qfx github.com: https://github.com/decolua/9router/commit/0c7c9de00ae3ab81d6580e3cc368483c4c03f6fd github.com: https://github.com/decolua/9router/releases/tag/v0.4.80