Loading market data...
← Back to CVE feed

CVE-2026-31016

MEDIUM CVSS 6.5 View on NVD ↗

Description

Cross Site Request Forgery vulnerability in Squidex.io Squidex CMS v.7.21.0 and before allows a remote attacker to escalate privileges via the IdentityServer account profile endpoint

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Published: Jun 29, 2026 20:17 UTC Modified: Jun 30, 2026 14:22 UTC