A vulnerability described as critical has been identified in Filestash 0.4.0 . This affects an unknown function of the file /admin/api/config . Executing a manipulation can lead to improper access controls. This vulnerability is handled as CVE-2026-50891 . The attack can be executed remotely. There is not any exploit available.