GHSA-pmp7-7j9c-794vMedium

Liquidfiles versions before 4.2.12 are affected by a broken access control vulnerability...

Published
June 20, 2026
Last Modified
June 20, 2026

🔗 CVE IDs covered (1)

📋 Description

Liquidfiles versions before 4.2.12 are affected by a broken access control vulnerability resulting in privilege escalation from an Admin in a secondary domain to a Sysadmin by modifying a group in their managed secondary (non-default) group.

🔗 References (4)