CVE-2026-4262

NONE

Risk Signal Score0/100 — NIEDRIG

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

Beschreibung

Vulnerability of incorrect authorization in HiJiffy Chatbot allows an attacker to download private messages from other users via the parameter 'ID' in '/api/v1/download/<ID>/'.

Referenzen

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-hiji...