Access Control Security Flaw in FluentBoards Plugin by Mahmudul Hasan Arif
CVE-2026-24561
5.4MEDIUM
What is CVE-2026-24561?
A missing authorization vulnerability exists in the FluentBoards plugin developed by Mahmudul Hasan Arif, allowing attackers to exploit incorrectly configured access control security levels. This issue affects versions from n/a up to and including 1.91.1, potentially enabling unauthorized users to access restricted functionalities and data.
Affected Version(s)
FluentBoards 0 <= 1.91.1