CVE-2026-7782 in Perfex CRMinformación

Resumen

por MITRE • 2026-05-05

A vulnerability was detected in CodeCanyon Perfex CRM up to 3.4.1. This affects the function Clients::project of the file application/controllers/Clients.php of the component Tenant Handler. The manipulation of the argument ID results in authorization bypass. The attack may be performed from remote. The exploit is now public and may be used.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulDB

Divulgación

2026-05-05

Moderación

aceptado

Artículo

VDB-360979

CPE

listo

CWE

CWE-639 (confirmado)

Explotación

Descargar

CVSS

6.3 (VulDB)

EPSS

0.00038

KEV

Actividades

muy bajo

Sector

Pharma, Agriculture, ...

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7782
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7782
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7782/

◂ Anterior Visión De Conjunto Próximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!