CVE-2026-30994 | Slah CMS up to 1.5.0 config.php access control

April 15, 2026 Yanac

A vulnerability was found in Slah CMS up to 1.5.0 and classified as critical. The impacted element is an unknown function of the file config.php. Executing a manipulation can lead to improper access controls.

This vulnerability is registered as CVE-2026-30994. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More

CVE-2026-5758 | Mafintosh Protocol-buffers-schema parser up to 3.6.0 code injection
CVE-2026-30996 | SAC-NFe 2.0.02 GET download.php path traversal (EUVD-2026-22977)