CVE-2026-24571

Publication date

2026-01-23 14:28:56

Family

Patchstack

State

PUBLISHED

Description

Missing Authorization vulnerability in boxnow BOX NOW Delivery box-now-delivery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BOX NOW Delivery: from n/a through <= 3.0.2.