CVE-2026-5750 | Fullstep up to 5.30.06 Endpoint false authorization

Inserito da Angelo Barbosa | Apr 22, 2026 | CVE

A vulnerability classified as critical was found in Fullstep up to 5.30.06. The affected element is an unknown function of the file /api/suppliers/v1/suppliers//false of the component Endpoint. The manipulation results in authorization bypass.

This vulnerability was named CVE-2026-5750. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is advised.

CVE-2026-5750 | Fullstep up to 5.30.06 Endpoint false authorization

Post correlati

CVE-2025-5728 | SourceCodester Open Source Clinic Management System 1.0 /manage_website.php website_image unrestricted upload

CVE-2023-49777 | YITH WooCommerce Product Add-Ons Plugin up to 4.3.0 on WordPress deserialization

CVE-2026-20911 | LibRaw 0b56545/d20315b File HuffTable::initval buffer size (TALOS-2026-2330)

CVE-2024-27913 | FRRouting up to 9.1 OSPF LSA Packet ospfd/ospf_te.c ospf_te_parse_te denial of service