A vulnerability was found in Progress Sitefinity up to 15.2.8440/15.3.8530/15.4.8629 and classified as critical . Affected is an unknown function of the component Web Services . The manipulation results in authorization bypass. This vulnerability was named CVE-2026-7201 . The attack may be performed from remote. There is no available exploit. It is suggested to upgrade the affected component.