CVE-2026-33335 | go-vikunja up to 2.1.x improper authorization in handler for custom url scheme (GHSA-6q44-85gc-cjvf)

Inserito da Angelo Barbosa | Mar 24, 2026 | CVE

A vulnerability classified as problematic has been found in go-vikunja vikunja up to 2.1.x. Affected is an unknown function. This manipulation causes improper authorization in handler for custom url scheme.

This vulnerability appears as CVE-2026-33335. The attack may be initiated remotely. There is no available exploit.

It is recommended to upgrade the affected component.

CVE-2026-33335 | go-vikunja up to 2.1.x improper authorization in handler for custom url scheme (GHSA-6q44-85gc-cjvf)

Post correlati

CVE-2025-5764 | code-projects Laundry System 1.0 /data/insert_laundry.php Customer cross site scripting

CVE-2025-54926 | Schneider EcoStruxure Power Monitoring Expert GetTgmlContent path traversal

CVE-2024-12591 | wbolt MagicPost Plugin up to 1.2.1 on WordPress Shortcode wb_share_social cross site scripting

CVE-2026-2220 | code-projects Online Reviewer System 1.0 btn_functions.php difficulty_id sql injection