Medium severityNVD Advisory· Published Mar 26, 2026· Updated May 19, 2026
CVE-2026-4263
CVE-2026-4263
Description
Vulnerability of incorrect authorization in HiJiffy Chatbot allows an attacker to download private messages from other users via the parameter 'visitor' in '/api/v1/webchat/message'.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- HiJiffy/HiJiffy Chatbotv5Range: all versions
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.