A vulnerability labeled as problematic has been found in Craft CMS up to 4.17.7/5.9.13 . This impacts an unknown function. Executing a manipulation can lead to missing authorization. The identification of this vulnerability is CVE-2026-56384 . The attack may be launched remotely. There is no exploit available. The affected component should be upgraded.