Vulnerabilities

CVE-2026-2209 - WeKan Custom Translation translationBody.js setCreateTranslation improper authori...

2026-02-08 0 views admin

CVE ID : CVE-2026-2209 Published : Feb. 8, 2026, 2:15 a.m. | 1 hour, 11 minutes ago Description : A vulnerability was detected in WeKan up to 8.18. The affected element is the function setCreateTranslation of the file client/components/settings/translationBody.js of the component Custom Translation Handler. The manipulation results in improper authorization. The attack can be launched remotely. Upgrading to version 8.19 is sufficient to fix this issue. The patch is identified as f244a43771f6ebf40218b83b9f46dba6b940d7de. It is suggested to upgrade the affected component. Severity: 6.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-2209

Severity

MEDIUM

Published

Feb. 8, 2026

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-2209medium

CVE-2026-2209 - WeKan Custom Translation translationBody.js setCreateTranslation improper authori...

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2025-15100 - JAY Login & Register <= 2.6.03 - authenticated (subscriber+) privilege escalatio...

CVE-2025-15027 - JAY Login & Register <= 2.6.03 - unauthenticated privilege escalation via jay_lo...

CVE-2026-2207 - WeKan Activity Publication activities.js LinkedBoardActivitiesBleed information d...

CVE-2026-2206 - WeKan Administrative Repair fixDuplicateLists.js FixDuplicateBleed access control

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting