A vulnerability identified as critical has been detected in newpanjing simpleui 2026.01.13. This affects the function
self.get_action of the file simpleui/admin.py of the component AjaxAdmin AJAX Endpoint. Performing a manipulation results in missing authentication.
This vulnerability is known as CVE-2026-16210. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
The project was informed of the problem early through an issue report but has not responded yet.