CVE-2026-2208 | WeKan up to 8.20 Rules rules.js RulesBleed authorization

Inserito da Angelo Barbosa | Feb 8, 2026 | CVE

A vulnerability has been found in WeKan up to 8.20 and classified as problematic. Impacted is an unknown function of the file server/publications/rules.js of the component Rules Handler. The manipulation leads to missing authorization.

This vulnerability is documented as CVE-2026-2208. The attack can be initiated remotely. There is not any exploit available.

The affected component should be upgraded.

CVE-2026-2208 | WeKan up to 8.20 Rules rules.js RulesBleed authorization

Post correlati

CVE-2025-49878 | Greg Winiarski WPAdverts Plugin up to 2.2.4 on WordPress cross site scripting

CVE-2024-5279 | Qiwen Netdisk up to 1.4.0 File Rename cross site scripting (I8W3H2)

CVE-2024-34679 | Samsung Mobile Devices Crane default permission

CVE-2024-49085 | Microsoft Windows Server 2008 R2 SP1 up to Server 2022 23H2 Routing/Remote Access Service integer overflow