CVE-2026-48117 - Account Takeover via Pre-Registration Attack in DroneAware Node
A pre-registration flaw in DroneAware Node allowed silent account takeover — any user authenticating via Google SSO or email verification could have their account hijacked.
Security Research