CVE-2026-4320 – Authorization Bypass in ICMS Content Management by Creartia Internet Consulting

CVE ID :CVE-2026-4320

Published : May 18, 2026, 11:16 a.m. | 48 minutes ago

Description :Authorization Bypass vulnerability in Creartia’s ICMS software could allow an attacker to gain unauthorized access to protected features by manipulating the HTTP redirect headers of the login process, causing the script to continue running and enabling privilege escalation without the need for credentials.

Severity: 9.3 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-8803 – opensourcepos Open Source Point of Sale Employee Login Employee.php login weak hash

CVE-2026-8802 – opensourcepos Open Source Point of Sale Items.php getPicThumb path traversal

CVE-2026-41119 – Dell Live Optics Certificate Validation Vulnerability

CVE-2026-0983 – Denial of service vulnerability in M-Files Server