CVE Catalog

CVE-2026-54184

HighCVSS 8.2
Published: Updated: Translated: NVD NIST

Summary

In Clean Login versions <= 1.15, there is a vulnerability to unauthenticated Insecure Direct Object References (IDOR). This allows attackers to access resources they should not have access to.

Risk Assessment

Organizations may be exposed to unauthorized access to sensitive data, potentially leading to privacy breaches and loss of user trust.

Recommendation

It is recommended to upgrade to the latest version of Clean Login to mitigate this vulnerability and implement appropriate authorization mechanisms.

Original NVD description (English source)

Unauthenticated Insecure Direct Object References (IDOR) in Clean Login <= 1.15 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS