Kodcloud KodExplorer Authorization Bypass Vulnerability

Vulnerability

An authorization bypass vulnerability has been identified in kodcloud KodExplorer versions through 4.52. The issue resides in the roleGroupAction function within the file /app/controller/systemRole.class.php. By manipulating the group_role parameter, a low-privilege user can bypass authorization and modify global group permission templates. This vulnerability can be exploited remotely, leading to unauthorized access and privilege escalation by allowing users to gain write permissions in shared locations.

Impact

Exploitation of this vulnerability allows for authorization bypass, enabling low-privilege users to gain unauthorized access to modify permission templates. This could lead to privilege escalation by allowing users to overwrite read-only permissions and gain write access in shared locations.

Added: Apr 19, 2026, 12:19 PM

Updated: Apr 19, 2026, 12:19 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

2.5

exploitability

6.6

remediation

0.0

relevance

6.2

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

2.5

exploitability

6.6

remediation

0.0

relevance

6.2

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Kodcloud KodExplorer Authorization Bypass Vulnerability

Vulnerability

Impact

Affected Products

kodcloud KodExplorer

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating