CVE-2021-20654

EPSS 0.8%CWE-79

Wekan, open source kanban board system, between version 3.12 and 4.11, is vulnerable to multiple stored cross-site scripting. This is named 'Fieldbleed' in the vendor's site.

Affected products

Wekan Team · Wekan

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://jvn.jp/en/jp/JVN80785288/https://wekan.github.io/hall-of-fame/fieldbleed/