Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.5
Site Suggest: Unauthorized Access to Restricted Features
CVE-2026-28104
Summary
A vulnerability in Site Suggest allows unauthorized users to access features that should be restricted to authorized personnel. This could lead to sensitive data being accessed or altered without permission. Users should update to the latest version of Site Suggest to fix this issue.
Original title
Missing Authorization vulnerability in Aryan Shirani Bid Abadi Site Suggest site-suggest allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Site Suggest: from n/a th...
Original description
Missing Authorization vulnerability in Aryan Shirani Bid Abadi Site Suggest site-suggest allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Site Suggest: from n/a through <= 1.3.9.
nvd CVSS3.1
6.5
Vulnerability type
CWE-862
Missing Authorization
Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026