CVE-2026-5031 in BichitroGan ISP Billing Software
Сводка (Английский)
A vulnerability was found in BichitroGan ISP Billing Software 2025.3.20. Impacted is an unknown function of the file /?_route=settings/users-view/ of the component Endpoint. The manipulation of the argument ID results in improper control of resource identifiers. The attack can be launched remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Раскрытие
29.03.2026
Записи
| Опубликовано | База | Темп | Уязвимость | CWE | Прод | Экс | Кон | EPSS | CTI | CVE |
|---|---|---|---|---|---|---|---|---|---|---|
| 27.03.2026 | 4.3 | 3.9 | BichitroGan ISP Billing Software Endpoint users-view эскалация привилегий | 99 | Billing Software | Доказательство концепции | Не определено | 0.00000 | 1.51 | CVE-2026-5031 |