CVE-2026-39384

CVSS v3.1

7.6

High

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.212, FreeScout does not take the limit user customer visibility parameter into account when merging customers. This vulnerability is fixed in 1.8.212.

Fix

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-639

Related Identifiers

CVE-2026-39384

Affected Products

Freescout

CVE-2026-39384

Weakness Enumeration

Related Identifiers

Affected Products

References · 3