CVE-2025-65781 | WeKan up to 18.15 Attachment Upload API improper authorization

Inserito da Angelo Barbosa | Dic 15, 2025 | CVE

A vulnerability classified as critical has been found in WeKan up to 18.15. This issue affects some unknown processing of the component Attachment Upload API. The manipulation leads to improper authorization.

This vulnerability is documented as CVE-2025-65781. The attack can be initiated remotely. There is not any exploit available.

It is recommended to upgrade the affected component.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

CVE-2025-65781 | WeKan up to 18.15 Attachment Upload API improper authorization

Post correlati

CVE-2024-23483 | Zscaler Client Connector up to 4.1 on macOS os command injection

CVE-2025-7327 | Widget for Google Reviews Plugin up to 1.0.15 on WordPress path traversal

CVE-2024-50614 | TinyXML2 up to 10.0.0 tinyxml2.cpp XMLUtil::GetCharacterRef assertion (Issue 996)

CVE-2023-39196 | Apache Ozone up to 1.3.0 Storage Container Manager Service improper authentication