PT-2026-33051 · WordPress · Fluentboards
Published
2026-04-15
·
Updated
2026-04-27
·
CVE-2026-40784
CVSS v3.1
8.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
FluentBoards versions prior to 1.91.3
Description
An authorization bypass exists due to incorrectly configured access control security levels, which allows for the use of a user-controlled key to bypass security restrictions.
Recommendations
Update to a version newer than 1.91.2.
Fix
IDOR
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fluentboards