CVE-2026-2669 | Rongzhitong Visual Integrated Command and Dispatch Platform up to 20260206 User /dm/dispatch/user/delete ID access control

A vulnerability was found in Rongzhitong Visual Integrated Command and Dispatch Platform up to 20260206. It has been rated as critical. This impacts an unknown function of the file /dm/dispatch/user/delete of the component User Handler. This manipulation of the argument ID causes improper access controls.

This vulnerability is registered as CVE-2026-2669. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

It is advisable to implement restrictive firewalling.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-2669 | Rongzhitong Visual Integrated Command and Dispatch Platform up to 20260206 User /dm/dispatch/user/delete ID access control

Post correlati

CVE-2024-11371 | slimndap Theater Plugin up to 0.18.6.2 on WordPress add_query_arg cross site scripting

CVE-2025-10211 | yanyutao0402 ChanCMS 3.3.0 /cms/collect/getArticle CollectController taskUrl server-side request forgery

CVE-2025-13764 | WP CarDealer Plugin up to 1.2.16 on WordPress process_register Remote Code Execution

CVE-2024-35836 | Linux Kernel up to 6.7.2 dpll allocation of resources (5050a5b9d8b4/830ead5fb0c5)