Description

** UNSUPPORTED WHEN ASSIGNED ** Focalboard version 8.0 fails to sanitize category IDs before incorporating them into dynamic SQL statements when reordering categories. An attacker can inject a malicious SQL payload into the category id field, which is stored in the database and later executed unsanitized when the category reorder API processes the stored value. This Second-Order SQL Injection (Time-Based Blind) allows an authenticated attacker to exfiltrate sensitive data including password hashes of other users. NOTE: Focalboard as a standalone product is not maintained and no fix will be issued.

INFO

Published Date :

2026-04-03T13:24:29.141Z

Last Modified :

2026-04-03T14:57:00.729Z

Source :

Mattermost
AFFECTED PRODUCTS

The following products are affected by CVE-2026-25773 vulnerability.

Vendors Products
Mattermost
  • Focalboard
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-25773.

URL Resource
https://github.com/mattermost-community/focalboard cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact