CVE-2026-4549 | mickasmt next-saas-stripe-starter 1.0.0 Stripe API open-customer-portal.ts openCustomerPortal authorization

A vulnerability identified as critical has been detected in mickasmt next-saas-stripe-starter 1.0.0. Affected by this issue is the function openCustomerPortal of the file actions/open-customer-portal.ts of the component Stripe API. This manipulation causes authorization bypass.

This vulnerability is registered as CVE-2026-4549. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More