CVE-2026-5599

Vulnerability Description

A user with API access and "manage users" permission in any venueless world is able to trigger deletion of user accounts in other worlds.

Related Weaknesses (CWE)

CWE-653

References

https://github.com/venueless/venueless/security/advisories/GHSA-gwjc-33fv-2gh4

FAQ

What is CVE-2026-5599?

CVE-2026-5599 is a documented vulnerability. A user with API access and "manage users" permission in any venueless world is able to trigger deletion of user accounts in other worlds.

How severe is CVE-2026-5599?

CVSS scoring is not yet available for CVE-2026-5599. Check NVD for updates.

Is there a patch for CVE-2026-5599?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.