CVE-2026-42562 | alextselegidis plainpad up to 1.1.0 API Endpoint /api.php/v1/users/ privileges management (ID 138)

A vulnerability classified as critical was found in alextselegidis plainpad up to 1.1.0. Affected is an unknown function of the file /api.php/v1/users/ of the component API Endpoint. The manipulation results in improper privilege management.

This vulnerability is known as CVE-2026-42562. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More