CVE-2026-16210 | newpanjing simpleui 2026.01.13 AjaxAdmin AJAX Endpoint simpleui/admin.py self.get_action missing authentication (Issue 537)

SecurityVulns

A vulnerability identified as critical has been detected in newpanjing simpleui 2026.01.13. This affects the function self.get_action of the file simpleui/admin.py of the component AjaxAdmin AJAX Endpoint. Performing a manipulation results in missing authentication.

This vulnerability is known as CVE-2026-16210. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More