CVE ID :CVE-2026-58054 Published : June 28, 2026, 1:32 a.m. | 1 hour, 39 minutes ago Description :MyBB 1.8.40 does not restrict which usergroup a limited Admin Control Panel user may assign when creating or editing users; the user module offers the Administrators group (gid 4) and its...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-58054 - MyBB - Privilege Escalation from Limited ACP User Management to Administrator

VERWANDTEARTIKEL

CVE-2026-58053 - Gitea act_runner - Container Hardening Bypass via Workflow Container Options

CVE-2026-58051 - libssh2 - Free of Uninitialized Pointer in publickey List Cleanup

CVE-2026-58050 - libssh2 - Integer Overflow in publickey Subsystem Attribute Allocation

CVE-2026-58049 - FFmpeg - Out-of-Bounds Write in RASC Decoder decode_dlta()

CVE-2026-43503

CVE-2026-8095 - Frontend File Manager Plugin <= 23.6 - Authenticated (Subscriber+) Arbitrary File Deletion