CVE-2026-55234 | Wekan up to 9.36 Permissions cards.js boardId improper authorization
A vulnerability, which was classified as critical, has been found in Wekan up to 9.36. This impacts an unknown function of the file server/permissions/cards.js of the component Permissions. Performing a manipulation of the argument boardId results in improper authorization.
This vulnerability was named CVE-2026-55234. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More