CVE-2026-40896

CVSS v3.1

7.1

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N

Name of the Vulnerable Software and Affected Versions OpenProject versions prior to 17.3.0

Description A user with manage agendas permission in any project can inject agenda items into meetings belonging to any other project on the instance, including those they cannot access. This is possible by iterating sequential section IDs, allowing an attacker to blindly spray items into every meeting on the instance without needing prior knowledge of the target project, meeting, or victim.

Recommendations Update to version 17.3.0.

Exploit

Fix

Time Of Check To Time Of Use

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-367CWE-639

Related Identifiers

CVE-2026-40896

Affected Products

Openproject

CVE-2026-40896

Weakness Enumeration

Related Identifiers

Affected Products

References · 5