HIGH
bludit
CVE published 2026-06-08
CVE-2026-46656
CVE-2026-46656 is a high-severity vulnerability in Bludit, a content management system. Versions prior to 3.22.0 are affected by a Broken Access Control flaw, which allows active sessions to remain valid even after the corresponding user account has been physically deleted from the database. This 'Ghost Session' enables revoked users to maintain full unauthorized access to the system. The vulnerability ha [truncated]