Medium severityNVD Advisory· Published Mar 26, 2026· Updated May 19, 2026
CVE-2026-4262
CVE-2026-4262
Description
Vulnerability of incorrect authorization in HiJiffy Chatbot allows an attacker to download private messages from other users via the parameter 'ID' in '/api/v1/download//'.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- HiJiffy/HiJiffy Chatbotv5Range: all versions
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.