A vulnerability was found in Bottelet DaybydayCRM up to 2.2.1 . It has been classified as critical . Affected is an unknown function of the component Setting Handler . Performing a manipulation results in missing authentication. This vulnerability is known as CVE-2026-10283 . Remote exploitation of the attack is possible. No exploit is available. It is recommended to apply a patch to fix this issue.