Vulnerability in N/a

CVE-2026-30994

Incorrect access control in the config.php component of Slah v1.5.0 and below allows unauthenticated attackers to access sensitive information, including active session credentials.

EPSS: 0.001 (20.0th percentile) — read the EPSS interpretation.

Affected products

  • N/a — versions n/a

References