Lucene search
HistoryJan 24, 2024 - 6:15 p.m.
CVE-2024-22720
kanboard
1.2.34
html injection
vulnerability
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
5.2 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
14.0%
Kanboard 1.2.34 is vulnerable to Html Injection in the group management feature.
Affected configurations
Node
kanboardkanboardMatch1.2.34
| CPE | Name | Operator | Version |
|---|---|---|---|
| kanboard:kanboard | kanboard | eq | 1.2.34 |
Related
cvelist
cvelist
CVE-2024-22720
2024-01-24 00:00:00
prion
prion
Design/Logic Flaw
2024-01-24 18:15:00
debiancve
debiancve
CVE-2024-22720
2024-01-24 18:15:08
nvd
nvd
CVE-2024-22720
2024-01-24 18:15:08
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
5.2 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
14.0%
Related for CVE-2024-22720