Loading
Roxy-WI through 5.2.2.0 allows SQL Injection via check_login. An unauthenticated attacker can extract a valid uuid to bypass authentication.
Use CWE-89, Roxy-Wi vendor hub and Roxy-Wi product page to widen CVE-2021-38167 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2026-33078, CVE-2026-33076 and CVE-2026-27811 for nearby disclosures in the same product family.