PT-2026-4223 · Mikado Themes · Overton+1
Tran Nguyen Bao Khanh
·
Published
2026-01-22
·
Updated
2026-01-22
·
CVE-2026-22406
CVSS v3.1
3.8
Low
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Mikado-Themes Overton versions 1.3 and earlier
Description
An authorization bypass exists in Mikado-Themes Overton due to incorrectly configured access control security levels. This allows exploitation through a user-controlled key. The issue involves bypassing authorization checks, potentially granting unauthorized access to resources or functionalities.
Recommendations
Versions prior to 1.3 should be updated.
Fix
IDOR
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mikado-Themes Overton
Overton