Unrated severityNVD Advisory· Published Feb 7, 2026· Updated Mar 5, 2026

WeKan < 8.20 Migration Functionality Insufficient Permission Checks

CVE-2026-25859

Description

Wekan versions prior to 8.20 allow non-administrative users to access migration functionality due to insufficient permission checks, potentially resulting in unauthorized migration operations.

Affected products

Wekan/Wekanv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/wekan/wekan/commit/cbb1cd78de3e40264a5e047ace0ce27f8635b4e6mitrepatch
www.vulncheck.com/advisories/wekan-migration-functionality-insufficient-permission-checksmitrethird-party-advisory
wekan.fimitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000