Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
4.3
Client Portal: Unauthorized Access to Restricted Data
CVE-2026-25003
Summary
The Client Portal software may allow unauthorized users to access sensitive data or perform actions they shouldn't be able to. This is because the access control settings are not properly configured. To fix this, update to the latest version or adjust the access control settings according to the documentation.
Original title
Missing Authorization vulnerability in madalin.ungureanu Client Portal client-portal allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Client Portal: from n...
Original description
Missing Authorization vulnerability in madalin.ungureanu Client Portal client-portal allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Client Portal: from n/a through <= 1.2.1.
nvd CVSS3.1
4.3
Vulnerability type
CWE-862
Missing Authorization
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026