CVE-2026-40350 | leepeuker movary up to 0.71.0 Setting /settings/users authorization (GHSA-7r3f-9fwv-p43w)

A vulnerability was found in leepeuker movary up to 0.71.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /settings/users of the component Setting Handler. This manipulation causes incorrect authorization.

This vulnerability appears as CVE-2026-40350. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is advised.VulDB Recent EntriesRead More