Vulnerabilities

CVE-2025-65780 - Wekan Privilege Escalation Unauthorized Access Vulnerability

2025-12-15 0 views admin

CVE ID : CVE-2025-65780 Published : Dec. 15, 2025, 2:15 p.m. | 1 hour, 13 minutes ago Description : An issue was discovered in Wekan The Open Source kanban board system up to version 18.15, fixed in 18.16. Authenticated users can update their entire user document (beyond profile fields), including orgs/teams and loginDisabled, due to missing server-side authorization checks; this enables privilege escalation and unauthorized access to other teams/orgs. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2025-65780

Published

Dec. 15, 2025

Impact: privilege escalation

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-65780

CVE-2025-65780 - Wekan Privilege Escalation Unauthorized Access Vulnerability

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2025-58173 - FreshRSS vulnerable to authenticated RCE via path traversal inside include()

CVE-2025-66402 - misskey.js's export data contains private post data

CVE-2025-14730 - CTCMS Content Management System Backend System Configuration Ct_Config.php code ...

CVE-2025-14729 - CTCMS Content Management System Backend App Configuration Ct_App.php save code i...

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting