A vulnerability marked as problematic has been reported in Wagtail up to 7.0.7/7.3.2/7.4.1. The impacted element is an unknown function of the component Image Preview Endpoint. The manipulation leads to improper handling of insufficient permissions or privileges.
This vulnerability is documented as CVE-2026-54261. The attack can be initiated remotely. There is not any exploit available.
It is suggested to upgrade the affected component.