Main Vulnerability Database Exploits ID:12500 - Exploit for Missing Authorization in Admidio - CVE-2026-32817

ID:12500 - Exploit for Missing Authorization in Admidio - CVE-2026-32817

Published: March 16, 2026

Vulnerability identifier: #VU124044

Vulnerability risk: High

CVE-ID: CVE-2026-32817

CWE-ID: CWE-862

Exploitation vector: Remote access

Vulnerable software:
Admidio

Link to public exploit:

https://github.com/Admidio/admidio/security/advisories/GHSA-rmpj-3x5m-9m5f/#poc

Vulnerability description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to the documents and files module does not verify whether the current user has permission to delete folders or files. A remote attacker can permanently destroy the entire document library.

Remediation

Install updates from vendor's website.

ID:12500 - Exploit for Missing Authorization in Admidio - CVE-2026-32817

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human