Vulnerability Description
An Improper Authorization vulnerability exists in PayloadCMS version 3.84.1 due to insufficient access control on the account unlock operation.
Related Weaknesses (CWE)
References
- https://fluidattacks.com/es/advisories/stitches
- https://github.com/payloadcms/payload
- https://fluidattacks.com/es/advisories/stitches
FAQ
What is CVE-2026-11779?
CVE-2026-11779 is a documented vulnerability. An Improper Authorization vulnerability exists in PayloadCMS version 3.84.1 due to insufficient access control on the account unlock operation.
How severe is CVE-2026-11779?
CVSS scoring is not yet available for CVE-2026-11779. Check NVD for updates.
Is there a patch for CVE-2026-11779?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.