ГлавнаяУязвимости → CVE-2026-25859
8.8высокая

CVE-2026-25859

Описание

Wekan versions prior to 8.20 allow non-administrative users to access migration functionality due to insufficient permission checks, potentially resulting in unauthorized migration operations.

Затрагиваемое ПО
Wekan project Wekan
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/wekan/wekan/commit/cbb1cd78de3e40264a5e047ace0ce27f8635b4e6https://wekan.fi/https://www.vulncheck.com/advisories/wekan-migration-functionality-insufficient-permission-checks