[Git][security-tracker-team/security-tracker][master] Add new issues in wekan, itp'ed

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
79ff5fb2 by Salvatore Bonaccorso at 2026-02-08T09:23:05+01:00
Add new issues in wekan, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
 CVE-2026-2209 (A vulnerability was detected in WeKan up to 8.18. The affected element ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-2208 (A security vulnerability has been detected in WeKan up to 8.20. Impact ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-2207 (A weakness has been identified in WeKan up to 8.20. This issue affects ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-2206 (A security flaw has been discovered in WeKan up to 8.20. This vulnerab ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-2205 (A vulnerability was identified in WeKan up to 8.20. This affects an un ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-2141 (A security flaw has been discovered in WuKongOpenSource WukongCRM up t ...)
 	TODO: check
 CVE-2026-2140 (A vulnerability was identified in Tenda TX9 up to 22.03.02.10_multi. A ...)
@@ -55,29 +55,29 @@ CVE-2026-2111 (A weakness has been identified in JeecgBoot up to 3.9.0. Affected
 CVE-2026-2110 (A security flaw has been discovered in Tasin1025 SwiftBuy up to 0f5011 ...)
 	TODO: check
 CVE-2026-25859 (Wekan versions prior to 8.20 allow non-administrative users to access  ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-25858 (macrozheng mall version 1.0.3 and prior contains an authentication vul ...)
 	TODO: check
 CVE-2026-25857 (Tenda G300-F router firmware versio 16.01.14.2 and prior contain an OS ...)
 	NOT-FOR-US: Tenda
 CVE-2026-25568 (WeKan versions prior to 8.19 contain an authorization logic vulnerabil ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-25567 (WeKan versions prior to 8.19 contain an insecure direct object referen ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-25566 (WeKan versions prior to 8.19 contain an authorization vulnerability in ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-25565 (WeKan versions prior to 8.19 contain an authorization vulnerability wh ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-25564 (WeKan versions prior to 8.19 contain an insecure direct object referen ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-25563 (WeKan versions prior to 8.19 contain an insecure direct object referen ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-25562 (WeKan versions prior to 8.19 contain an information disclosure vulnera ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-25561 (WeKan versions prior to 8.19 contain an authorization weakness in the  ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2026-25560 (WeKan versions prior to 8.19 contain an LDAP filter injection vulnerab ...)
-	TODO: check
+	- wekan <itp> (bug #819238)
 CVE-2025-15564 (A vulnerability has been found in Mapnik up to 4.2.0. This vulnerabili ...)
 	TODO: check
 CVE-2025-15100 (The JAY Login & Register plugin for WordPress is vulnerable to Privile ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79ff5fb28ed970e882ebbedd70b44b0f9ac0ce7d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79ff5fb28ed970e882ebbedd70b44b0f9ac0ce7d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260208/41626740/attachment.htm>