CVE-2026-25924

HIGH

Kanboard < 1.2.50 - Incorrect Authorization

Title source: rule

Description

Kanboard is project management software focused on Kanban methodology. Prior to 1.2.50, a security control bypass vulnerability in Kanboard allows an authenticated administrator to achieve full Remote Code Execution (RCE). Although the application correctly hides the plugin installation interface when the PLUGIN_INSTALLER configuration is set to false, the underlying backend endpoint fails to verify this security setting. An attacker can exploit this oversight to force the server to download and install a malicious plugin, leading to arbitrary code execution. This vulnerability is fixed in 1.2.50.

Exploits (2)

github STUB 10 stars
by XiaomingX · pythonpoc
https://github.com/XiaomingX/data-cve-poc-py-v1/tree/main/2026/CVE-2026-25924
nomisec STUB 1 stars
by drkim-dev · poc
https://github.com/drkim-dev/CVE-2026-25924

References (3)

Scores

CVSS v3 8.4
EPSS 0.0009
EPSS Percentile 26.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

Details

CWE
CWE-863
Status published
Products (1)
kanboard/kanboard < 1.2.50
Published Feb 11, 2026
Tracked Since Feb 18, 2026