CVE-2026-44200 in Wagtailالمعلومات

الملخص

بحسب MITRE • 11/05/2026

Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user with limited access to pages could copy a page they don't have access to to an area of the site they do. Once coped, they'd be able to view its contents, and potentially publish it. Permissions were correctly checked for the copy destination, but not for the source page. This vulnerability is fixed in 7.0.7, 7.3.2, and 7.4.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

GitHub M

حجز

05/05/2026

إفشاء

11/05/2026

الاعتدال

تمت الموافقة

إدخال

VDB-362640

CPE

جاهز

CWE

CWE-280 (مؤكد)

CVSS

6.5 (CNA)

EPSS

0.00027

KEV

لا

النشاطات

منخفض جدًا

القطاع

Agriculture, Hostingprovider, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-44200
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-44200
CVE Details	https://www.cvedetails.com/cve/CVE-2026-44200/

التالي ▸نظرة عامة ◂ السابق

Interested in the pricing of exploits?

See the underground prices here!