PT-2026-39406 · Plainpad · Plainpad
Qiaonpc
·
Published
2026-05-09
·
Updated
2026-05-09
·
CVE-2026-42562
CVSS v3.1
8.3
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L |
Name of the Vulnerable Software and Affected Versions
Plainpad versions prior to 1.1.1
Description
Plainpad allows a low-privilege authenticated user to escalate their privileges to administrator. This occurs because the endpoint "/api.php/v1/users/{id}" directly persists the
admin attribute from user input. By submitting admin=true via a PUT request to this endpoint, a user can gain immediate access to administrator-only routes.Recommendations
Update to version 1.1.1.
Fix
LPE
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Plainpad