CVE-2026-52780

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, cache store poisoning leads to Remote Code Execution (RCE). This vulnerability is fixed in 17.3.3 and 17.4.1.
Configurations

No configuration.

History

26 Jun 2026, 20:20

Type Values Removed Values Added
New CVE

Information

Published : 2026-06-26 20:17

Updated : 2026-06-27 04:17


NVD link : CVE-2026-52780

Mitre link : CVE-2026-52780

CVE.ORG link : CVE-2026-52780


JSON object : View

Products Affected

No product.

CWE
CWE-20

Improper Input Validation