CVE-2026-1964 | WeKan up to 8.20 REST Endpoint models/boards.js BoardTitleRESTBleed access control

Inserito da Angelo Barbosa | Feb 5, 2026 | CVE

A vulnerability, which was classified as critical, has been found in WeKan up to 8.20. This impacts an unknown function of the file models/boards.js of the component REST Endpoint. This manipulation causes improper access controls.

This vulnerability is registered as CVE-2026-1964. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-1964 | WeKan up to 8.20 REST Endpoint models/boards.js BoardTitleRESTBleed access control

Post correlati

CVE-2024-5249 | Akana API Platform prior 2024.1.0 SAML Token authentication replay

CVE-2024-40502 | Hospital Management System Loginpage.aspx btn_login_b_Click sql injection

CVE-2024-55546 | ORing IAP-420 up to 2.01e cross site scripting

CVE-2025-7108 | risesoft-y9 Digital-Infrastructure up to 9.6.7 Y9FileController.java deleteFile fullPath path traversal