CVE-2026-1141
Unknown Unknown - Not Provided
Improper Authorization in PHPGurukul News Portal Add-Subadmins.php

Publication date: 2026-01-19

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability was identified in PHPGurukul News Portal 1.0. The affected element is an unknown function of the file /admin/add-subadmins.php of the component Add Sub-Admin Page. Such manipulation leads to improper authorization. The attack can be launched remotely. The exploit is publicly available and might be used.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-19
Last Modified
2026-04-29
Generated
2026-06-16
AI Q&A
2026-01-19
EPSS Evaluated
2026-06-15
NVD
CVE-2026-1141
EUVD
EUVD-2026-3237
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
phpgurukul news_portal 1.0
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-285 The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.
CWE-266 A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-1141 is a broken access control vulnerability in PHPGurukul News Portal 1.0, specifically in the /admin/add-subadmins.php page. The vulnerability exists because the application enforces access control only at the frontend/UI level without proper server-side authorization checks. This allows sub-admin users to bypass UI restrictions by directly accessing the admin-only endpoint and create additional sub-admin accounts. This leads to both horizontal privilege escalation (gaining privileges of other sub-admins) and vertical privilege escalation (gaining higher administrative privileges). [1, 2, 3]

Impact Analysis

This vulnerability can allow unauthorized sub-admin users to escalate their privileges by creating additional sub-admin accounts, potentially gaining full administrative control over the News Portal. This compromises the confidentiality, integrity, and availability of the system. Attackers can remotely exploit this flaw easily, potentially fully compromising the admin panel and the overall system. [1, 2, 3]

Detection Guidance

This vulnerability can be detected by checking for unauthorized access attempts to the endpoint /admin/add-subadmins.php. One method is to search for access logs showing requests to this URL from non-administrator users. Additionally, Google dorking can be used to identify vulnerable targets by searching for "inurl:admin/add-subadmins.php". Network monitoring tools can be configured to alert on HTTP requests to this endpoint. Specific commands to detect this include using grep on web server logs, for example: grep "/admin/add-subadmins.php" /var/log/apache2/access.log. Also, monitoring for HTTP 200 responses to this endpoint from sub-admin or unauthorized users can indicate exploitation attempts. [3]

Mitigation Strategies

Immediate mitigation steps include implementing strict server-side role verification on the /admin/add-subadmins.php endpoint to ensure only administrator users can access it. Unauthorized users should receive a 403 Forbidden response. If patching is not immediately possible, restrict access to this endpoint via network controls such as IP whitelisting or firewall rules. Monitoring and logging access attempts to this endpoint should be enhanced. Ultimately, replacing or updating the affected component to a version with proper authorization checks is recommended. [2]

Compliance Impact

The provided resources do not specify how this vulnerability affects compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-1141. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart