CNNVD-202512-2697 Information

CNNVD ID

CNNVD-202512-2697

Related CVE

CVE-2025-65782

• CNNVD Published: 2025-12-15

Description (Chinese)

WeKan是WeKan开源的一个看板应用程序。 WeKan 18.15及之前版本存在安全漏洞，该漏洞源于卡片更新处理中的授权缺陷，可能导致投票伪造和未经授权的投票。

Description (English)

Wekan is a panel application from WeKan Open Source. Wekan 18.15 and previous versions had a security loophole, which stemmed from a mandate gap in the card update, which could lead to the falsification of voting and unauthorized voting.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

WeKan

Published

2025-12-15

Last Modified

2026-02-24

References

https://github.com/wekan/wekan https://github.com/wekan/wekan/blob/main/CHANGELOG.md#v816-2025-11-02-wekan–release https://github.com/wekan/wekan/commit/0a1a075f3153e71d9a858576f1c68d2925230d9c https://wekan.fi/hall-of-fame/spacebleed/ https://access.redhat.com/security/cve/cve-2025-65782

Patch

https://github.com/wekan/wekan/releases