PT-2026-25295 · Themefusion · Fusion Builder
Bonds
·
Publicado
2026-03-13
·
Atualizado
2026-03-14
·
CVE-2026-32451
CVSS v3.1
6.5
Média
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
ThemeFusion Fusion Builder versions prior to 3.15.0
Description
A missing authorization issue exists in ThemeFusion Fusion Builder, allowing exploitation of incorrectly configured access control security levels. The issue allows unauthorized access due to improper configuration of access controls.
Recommendations
Update ThemeFusion Fusion Builder to version 3.15.0 or later.
Correção
Missing Authorization
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Fusion Builder