QSearchQSearch

CVE-2026-44083

An authorization bypass through user-controlled key vulnerability has been reported to affect QuMagie

Published: 2026-06-09 · Last updated: 2026-06-09

Severity and scoring

CWE
CWE-639

Description

An authorization bypass through user-controlled key vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the vulnerability to gain unintended privileges. We have already fixed the vulnerability in the following version: QuMagie 2.9.1 and later

Source: NVD

References

Related CVEs

Same CWE

  • CVE-2026-53675 BuddyPress 14.4.0 contains an insecure direct object reference vulnerability in the friends REST API that allows any authenticated attack... (4.3 MEDIUM)
  • CVE-2026-53673 BuddyPress 14.4.0 contains an insecure direct object reference vulnerability in the messages REST API that allows authenticated attackers... (8.1 HIGH)
  • CVE-2026-6444 A flaw exists in the FlashArray Purity management interface where an authenticated low-privileged user may, under specific conditions, ac...
  • CVE-2026-9185 The 6Storage Rentals plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to and inc... (7.5 HIGH)
  • CVE-2026-49141 WACRM prior to commit 73041bf contain an authorization bypass vulnerability in the automation engine that allows authenticated attackers ... (7.1 HIGH)