Security Control Bypass in Kanboard Project Management Software
CVE-2026-25924

8.5HIGH

Key Information:

Vendor

Kanboard

Status
Kanboard
Vendor
CVE Published:
11 February 2026

What is CVE-2026-25924?

A security control bypass vulnerability exists in Kanboard, a project management software tailored for the Kanban methodology. This flaw, present in versions before 1.2.50, allows an authenticated administrator to achieve full Remote Code Execution (RCE). Although the application design hides the plugin installation interface when the PLUGIN_INSTALLER setting is set to false, the backend fails to enforce this security restriction properly. As a result, attackers can exploit this weakness to make the server download and install malicious plugins, leading to arbitrary code execution. The issue has been addressed in version 1.2.50.

Affected Version(s)

kanboard < 1.2.50

References

https://github.com/kanboard/kanboard/security/advisories/...
x_refsource_CONFIRM
https://github.com/kanboard/kanboard/commit/b9ada89b1a640...
x_refsource_MISC
https://github.com/kanboard/kanboard/releases/tag/v1.2.50
x_refsource_MISC

CVSS V3.1

Score:
8.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.