A vulnerability was found in Progress Sitefinity up to 15.4.8629 . It has been classified as critical . Affected by this vulnerability is an unknown functionality of the component Web Services . This manipulation causes insufficiently protected credentials. The identification of this vulnerability is CVE-2026-7312 . It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is recommended.