CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-15188

mediumCVSS 6.3covered by 1 sourcefirst seen 2026-07-09
A weakness has been identified in manjurulhoque django-job-portal up to dfa352f305bba44445ac5dc12e9b2a98c9dcd71f. Affected by this vulnerability is the function EditEmployeeProfileAPIView of the file accounts/api/views.py of the component Employee Dashboard Endpoint. This manipulation of the argument role causes improper access controls. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available. The project was informed of the problem early through an issue report but has not responded yet.

⚡ Watch CVE-2026-15188

Get an email if CVE-2026-15188 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2026-15188

CVE.org record

Embed the live status

CVE-2026-15188 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-15188 status](https://www.csirts.com/badge/CVE-2026-15188)](https://www.csirts.com/cve/CVE-2026-15188)