A vulnerability classified as problematic has been found in FlaskBB up to 2.2.0. Impacted is an unknown function of the component Bulk AJAX Endpoint. Performing a manipulation results in improper authorization.

This vulnerability is identified as CVE-2026-22660. The attack can be initiated remotely. There is not any exploit available.