QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2026-26063

Back to search

CVE-2026-26063

Published: Feb 19, 2026

Modified: Feb 19, 2026

PUBLISHED

Description

CediPay is a crypto-to-fiat app for the Ghanaian market. A vulnerability in CediPay prior to version 1.2.3 allows attackers to bypass input validation in the transaction API. The issue has been fixed in version 1.2.3. If upgrading is not immediately possible, restrict API access to trusted networks or IP ranges; enforce strict input validation at the application layer; and/or monitor transaction logs for anomalies or suspicious activity. These mitigations reduce exposure but do not fully eliminate the vulnerability.

VendorProductVersions

xpertforextradeinc

CediPay

affected
< 1.2.3

Weaknesses (CWE)

CWE-20

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2026-26063 - Security Vulnerability | QwikSec