CVE-2026-38934 PUBLISHED

Assigner: mitre
Reserved: 06.04.2026 Published: 27.04.2026 Updated: 27.04.2026

Cross Site Request Forgery vulnerability in diskoverdata diskover-community v.2.3.5. and before allows a remote attacker to escalate privileges and obtain sensitive information via the public/settings_process.php

Product Status

Vendor	n/a
Product	n/a
Versions	Version n/a is affected

References

http://diskover-community.com
http://diskoverdata.com
https://github.com/VadlaReddySai/diskoverdata-cve-writeups/blob/main/CVE-2026-38934

Problem Types

n/a text