CVE-2026-7782 | CodeCanyon Perfex CRM up to 3.4.1 Tenant Clients.php Clients::project ID authorization

A vulnerability, which was classified as critical, was found in CodeCanyon Perfex CRM up to 3.4.1. This affects the function Clients::project of the file application/controllers/Clients.php of the component Tenant Handler. The manipulation of the argument ID results in authorization bypass.

This vulnerability was named CVE-2026-7782. The attack may be performed from remote. In addition, an exploit is available.VulDB Recent EntriesRead More