CVE-2026-2668 | Rongzhitong Visual Integrated Command and Dispatch Platform up to 20260206 User /dm/dispatch/user/add access control

A vulnerability was found in Rongzhitong Visual Integrated Command and Dispatch Platform up to 20260206. It has been declared as critical. This affects an unknown function of the file /dm/dispatch/user/add of the component User Handler. The manipulation results in improper access controls.

This vulnerability is cataloged as CVE-2026-2668. The attack may be launched remotely. Furthermore, there is an exploit available.

Applying restrictive firewalling is recommended.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-2668 | Rongzhitong Visual Integrated Command and Dispatch Platform up to 20260206 User /dm/dispatch/user/add access control

Post correlati

CVE-2024-56523 | Radware Cloud Web Application Firewall HTTP GET Request access control (VU#722229)

CVE-2023-44915 | c3crm up to 3.0.4 /Login.php login_error cross site scripting

CVE-2024-6500 | InPost for WooCommerce Plugin/InPost PL Plugin on WordPress authorization

CVE-2025-8175 | D-Link DI-8400 16.07.26A1 jhttpd usb_paswd.asp share_enable null pointer dereference