CVE-2025-65780

Name of the Vulnerable Software and Affected Versions Wekan versions prior to 18.16

Description Authenticated users can modify their entire user document, including organization and team memberships, and login status, due to insufficient server-side authorization checks. This allows for privilege escalation and unauthorized access to other teams and organizations.

Recommendations Update to version 18.16 or later.