CVE-2026-21446 | Bagisto up to 2.3.9 API Endpoint missing authentication

A vulnerability classified as critical was found in Bagisto up to 2.3.9. This vulnerability affects unknown code of the component API Endpoint. Executing manipulation can lead to missing authentication.

This vulnerability is registered as CVE-2026-21446. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More