2 matches found
CVE-2017-15204
In Kanboard before 1.0.47, by altering form data, an authenticated user can add automatic actions to a private project of another user...
CVE-2017-15204
Vulnerability details (CVE-2017-15204): In Kanboard prior to 1.0.47, an authenticated user can modify form data to add automatic actions to another user’s private project. Affected software: Kanboard before 1.0.47. Root cause: insufficient validation of altered form data allowing escalation of ac...