CVE-2026-27116 | go-vikunja up to 1.x Projects cross site scripting (GHSA-4qgr-4h56-8895)

A vulnerability classified as problematic has been found in go-vikunja vikunja up to 1.x. The impacted element is an unknown function of the component Projects Module. Performing a manipulation results in cross site scripting.

This vulnerability is identified as CVE-2026-27116. The attack can be initiated remotely. There is not any exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More