Severity:
CRITICAL RISK
(9.8)
Missing Authentication for Installation APIs (CWE-306) in Bagisto eCommerce 2.3
CVE-2026-21446
Published:
Jan 2, 2026
Status:
Analyzed
Summary
Affected Context
Exploit Preconditions
Why This Happens
Potential Impact
General Mitigation Guidance
How Teams Detect Issues Like This
Frequently Asked Questions
Source
NDV
