CVE-2026-47068 | phenixdigital phoenix_storybook up to 1.0.x Control Message component_iframe_live.ex Query authorization

A vulnerability was found in phenixdigital phoenix_storybook up to 1.0.x and classified as critical. Impacted is an unknown function in the library lib/phoenix_storybook/live/story/component_iframe_live.ex of the component Control Message Handler. Such manipulation of the argument Query leads to authorization bypass.

This vulnerability is documented as CVE-2026-47068. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2026-47068 | phenixdigital phoenix_storybook up to 1.0.x Control Message component_iframe_live.ex Query authorization

Post correlati

CVE-2025-14737 | TP-Link WA850RE up to V2_160527/V3_160922 httpd os command injection

CVE-2024-37398 | Ivanti Secure Access Client up to 22.7R3 improper authentication

CVE-2023-6904 | Jahastech NxFilter 4.3.2.5 /config,admin.jsp admin_name cross-site request forgery

CVE-2024-5395 | itsourcecode Online Student Enrollment System 1.0 listofinstructor.php FullName sql injection