CVE-2026-27835 | wger-project wger up to 2.4 authorization (GHSA-xf68-8hjw-7mpm)

Inserito da Angelo Barbosa | Feb 27, 2026 | CVE

A vulnerability categorized as problematic has been discovered in wger-project wger up to 2.4. This vulnerability affects the function RepetitionsConfigViewSet/MaxRepetitionsConfigViewSet. Executing a manipulation can lead to authorization bypass.

This vulnerability is handled as CVE-2026-27835. The attack can be executed remotely. There is not any exploit available.

It is advisable to implement a patch to correct this issue.

CVE-2026-27835 | wger-project wger up to 2.4 authorization (GHSA-xf68-8hjw-7mpm)

Post correlati

CVE-2025-37868 | Linux Kernel prior 6.12.25/6.14.4/6.15-rc3 migrate_pages_batch deadlock

CVE-2024-7007 | Positron Broadcast Signal Processor TRA7005 1.20/3.1/7.5 authentication bypass (icsa-24-207-02)

CVE-2024-47532 | zopefoundation RestrictedPython up to 7.2 RestrictedPython.Utilities.utility_builtins information disclosure

CVE-2025-5432 | AssamLook CMS 1.0 /view_tender.php ID sql injection