VIR Vulnerability Intelligence Relay

Package impact

golang Go / github.com/mattermost/focalboard

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-25773 medium 6.5 6.5 2mo ago Focalboard doesn't sanitize category IDs before incorporating them into dynamic SQL statements
CVE-2026-28736 medium 4.3 4.3 2mo ago Focalboard doesn't validate file ownership when serving uploaded files