CNNVD-202602-1049 Information

CNNVD ID

CNNVD-202602-1049

Related CVE

CVE-2026-21626

• CNNVD Published: 2026-02-06

Description (Chinese)

StackIdeas EasyDiscuss是StackIdeas公司的一个扩展。 StackIdeas EasyDiscuss存在信息泄露漏洞，该漏洞源于论坛帖子自定义字段的访问控制设置未应用于JSON输出类型，可能导致访问控制列表违规和信息泄露。

Description (English)

StackIdeas EasyDiscuss is an extension of StackIdeas. StackIdeas EasyDiscuss has an information leak loophole, which stems from the fact that access control settings in the forum post customized fields are not applied to JSON output type, which may lead to access control list irregularities and information leaks.

Hazard Level

High

Vulnerability Type

信息泄露

Affected Vendor

StackIdeas

Published

2026-02-06

Last Modified

2026-02-24

References

https://stackideas.com/easydiscuss