exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2026-25564

около 2 месяцев назад

WeKan versions prior to 8.19 contain an insecure direct object reference (IDOR) in checklist creation and related checklist routes. The implementation does not verify that the supplied cardId belongs to the supplied boardId, allowing cross-board ID tampering by manipulating identifiers.

CVSS3: 7.5

EPSS: Низкий

CVE-2026-25564

около 2 месяцев назад

WeKan versions prior to 8.19 contain an insecure direct object referen ...

CVSS3: 7.5

EPSS: Низкий

GHSA-xc4h-36v7-xrrw

около 2 месяцев назад

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2026-25564 WeKan versions prior to 8.19 contain an insecure direct object reference (IDOR) in checklist creation and related checklist routes. The implementation does not verify that the supplied cardId belongs to the supplied boardId, allowing cross-board ID tampering by manipulating identifiers.	CVSS3: 7.5	0% Низкий	около 2 месяцев назад
CVE-2026-25564 WeKan versions prior to 8.19 contain an insecure direct object referen ...	CVSS3: 7.5	0% Низкий	около 2 месяцев назад
GHSA-xc4h-36v7-xrrw WeKan versions prior to 8.19 contain an insecure direct object reference (IDOR) in checklist creation and related checklist routes. The implementation does not verify that the supplied cardId belongs to the supplied boardId, allowing cross-board ID tampering by manipulating identifiers.	CVSS3: 7.5	0% Низкий	около 2 месяцев назад

Уязвимостей на страницу