top of page
perceptive_background_267k.jpg

4ga Boards is a boards system for realtime project management. Prior to 3.3.5, a path traversal vulnerability allows an authenticated user with board import pri…

Published:

23 April 2026 at 22:00:00

Alert date:

24 April 2026 at 20:03:09

Source:

nvd.nist.gov

Click to open the original link from this advisory

Enterprise Applications, Web Technologies

CVE-2026-41419 affects 4ga Boards, a realtime project management system. A path traversal vulnerability in versions prior to 3.3.5 allows authenticated users with board import privileges to exploit the BOARDS archive import feature. Attackers can make the server ingest arbitrary host files as board attachments during import. Once imported, these files can be downloaded through the normal application interface, leading to unauthorized local file disclosure. The vulnerability has been patched in version 3.3.5.

Technical details

Mitigation steps:

Affected products:

4ga Boards

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-41419
https://github.com/RARgames/4gaBoards/security/advisories/GHSA-rrjq-7x8g-cmgm

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page