CVE-2026-61971
LOW
NVD
CVSS Score
2.7
Severity
LOW
Published
Jul 13, 2026
Vendor
unknown
Description
Authorization Bypass Through User-Controlled Key vulnerability in Cozmoslabs User Profile Picture metronet-profile-picture allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Profile Picture: from n/a through <= 2.6.3.