Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.5
ConveyThis: Incorrect Access Control Lets Attackers Access Sensitive Data
CVE-2025-68021
Summary
ConveyThis, a translation service, has a security issue that allows attackers to access sensitive data if the access control settings are not properly configured. This means that an attacker could potentially view or manipulate sensitive information. To protect yourself, make sure to review and correctly configure the access control settings for your ConveyThis account.
Original title
Missing Authorization vulnerability in ConveyThis ConveyThis conveythis-translate allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ConveyThis: from n/a thr...
Original description
Missing Authorization vulnerability in ConveyThis ConveyThis conveythis-translate allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ConveyThis: from n/a through <= 269.5.
nvd CVSS3.1
6.5
Vulnerability type
CWE-862
Missing Authorization
Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026