CVE-2026-41657 | admidio up to 5.0.8 contacts_data.php isAdministratorUsers authorization (GHSA-g8p8-94f2-28gr)

A vulnerability was found in admidio up to 5.0.8. It has been declared as problematic. The affected element is the function isAdministratorUsers of the file contacts_data.php. The manipulation results in incorrect authorization.

This vulnerability is reported as CVE-2026-41657. The attack can be launched remotely. No exploit exists.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More