Medium severity6.3NVD Advisory· Published May 4, 2026· Updated May 5, 2026
CVE-2026-7782
CVE-2026-7782
Description
A vulnerability was detected in CodeCanyon Perfex CRM up to 3.4.1. This affects the function Clients::project of the file application/controllers/Clients.php of the component Tenant Handler. The manipulation of the argument ID results in authorization bypass. The attack may be performed from remote. The exploit is now public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=3.4.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.