ГлавнаяУязвимости → CVE-2026-48611
9.8критическая

CVE-2026-48611

Описание

Improper authentication checks in the OAuth implementation allow account hijacking even when OAuth is not configured or enabled leading to unauthorized access in default installations.

CVSS
Балл9.8 — критическая
ВекторCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.phpbb.com/community/viewtopic.php?t=2672170