A vulnerability was found in newpanjing simpleui 2026.01.13. This affects the function self.get_action of the file simpleui/admin.py of the component AjaxAdmin AJAX Endpoint. Performing a manipulation results in missing authentication. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.
Metrics
Affected Vendors & Products
References
History
Sun, 19 Jul 2026 03:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability was found in newpanjing simpleui 2026.01.13. This affects the function self.get_action of the file simpleui/admin.py of the component AjaxAdmin AJAX Endpoint. Performing a manipulation results in missing authentication. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet. | |
| Title | newpanjing simpleui AjaxAdmin AJAX Endpoint admin.py self.get_action missing authentication | |
| First Time appeared |
Newpanjing
Newpanjing simpleui |
|
| Weaknesses | CWE-287 CWE-306 |
|
| CPEs | cpe:2.3:a:newpanjing:simpleui:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Newpanjing
Newpanjing simpleui |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-19T03:15:08.240Z
Reserved: 2026-07-18T08:32:01.295Z
Link: CVE-2026-16210
No data.
No data.
No data.
OpenCVE Enrichment
No data.