CVE-2026-32300 | opensource-workshop connect-cms up to 1.41.0/2.41.0 My Page improper authorization (GHSA-qr6x-wvxr-8hm9)

Inserito da Angelo Barbosa | Mar 24, 2026 | CVE

A vulnerability classified as critical has been found in opensource-workshop connect-cms up to 1.41.0/2.41.0. Affected is an unknown function of the component My Page. Performing a manipulation results in improper authorization.

This vulnerability is cataloged as CVE-2026-32300. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2026-32300 | opensource-workshop connect-cms up to 1.41.0/2.41.0 My Page improper authorization (GHSA-qr6x-wvxr-8hm9)

Post correlati

CVE-2024-9526 | Kubeflow Pipeline View Web UI description cross site scripting

CVE-2024-23896 | Cups Easy 1.0 URL /cupseasylive/stock.php batchno cross site scripting

CVE-2023-34873 | Mobotix Mx6 v26 tcpdump expression/command delimiters (icsa-24-235-03)

CVE-2024-43857 | Linux Kernel up to 6.10.2 f2fs is_end_zone_blkaddr null pointer dereference (381cbe85592c/c82bc1ab2a8a)