What is CVE-2026-47366?

CVE-2026-47366 is a high-severity vulnerability, classified under Improper Access Control. CVSS score: 7.2/10. Published 2026-06-12.

How severe is CVE-2026-47366?

High severity. CVSS v3 base score is 7.2 out of 10.

CVE-2026-47366

CVE-2026-47366

Improper verification of access permissions when modifying permissions through the Administration Control Panel (ACP) allowed an authenticated administrator to grant permissions beyond the level authorized for their account, resulting in p…

CVSS v3 metric

CVSS v3 base score 7.2 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.

Weakness classification (CWE)

CWE-284 — Improper Access Control

References

support@hackerone.com

Frequently asked questions

What is CVE-2026-47366?: CVE-2026-47366 is a high-severity vulnerability, classified under Improper Access Control. CVSS score: 7.2/10. Published 2026-06-12.
How severe is CVE-2026-47366?: High severity. CVSS v3 base score is 7.2 out of 10.