A vulnerability, which was classified as problematic , was found in Erudika scoold up to 1.66.1 . Impacted is an unknown function of the file /questions/ask . Such manipulation of the argument postId leads to authorization bypass. This vulnerability is referenced as CVE-2026-39354 . It is possible to launch the attack remotely. No exploit is available. You should upgrade the affected component.