Vulnerability Name: Authorization Bypass Through User-Controlled Key and Missing Authorization in studiocms Severity: Moderate (6.5/10) CVE ID: CVE-2026-24134 Weaknesses: CWE-639, CWE-862 Affected Versions: <=0.1.1 Patched Versions: 0.2.0 Description: - Summary: Studiocms contains a Broken Object Level Authorization (BOLA) vulnerability that allows users with the "Visitor" role to access draft content created by Editor/Admin/Owner users. - The Issue: The endpoint /dashboard/content-management/edit?edit=[UUID] validates user authentication but does NOT validate user role and content ownership. - PoC: - Create a draft as an Editor user and note the UUID in the URL. - Access the draft as a Visitor user using the UUID. - Impact Scenarios: - Information Disclosure: Visitor users can read unpublished drafts containing sensitive information. - Privacy Violation: Personal notes, work-in-progress content, or internal communications in drafts exposed. - Business Impact: Premature disclosure of marketing campaigns, product launches, or announcements. - Complete RBAC Bypass: The entire role-based access control system for draft content is bypassed.