CVE-2026-2209 | WeKan up to 8.18 Custom Translation translationBody.js setCreateTranslation improper authorization

Inserito da Angelo Barbosa | Feb 8, 2026 | CVE

A vulnerability was found in WeKan up to 8.18 and classified as critical. The affected element is the function setCreateTranslation of the file client/components/settings/translationBody.js of the component Custom Translation Handler. The manipulation results in improper authorization.

This vulnerability is reported as CVE-2026-2209. The attack can be launched remotely. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2026-2209 | WeKan up to 8.18 Custom Translation translationBody.js setCreateTranslation improper authorization

Post correlati

CVE-2025-13447 | Progress LoadMaster prior 7.2.54.16/7.2.62.2 API os command injection

CVE-2023-51094 | Tenda M3 1.0.0.12(4856) TendaTelnet Privilege Escalation

CVE-2024-13091 | WPBot Pro Chatbot Plugin up to 13.5.4 on WordPress unrestricted upload

CVE-2024-26932 | Linux Kernel up to 6.8.2/6.9-rc1 typec tcpm_port_unregister_pd double free (242e425ed580/b63f90487bdf)