3 matches found
CVE-2017-15206
In Kanboard before 1.0.47, by altering form data, an authenticated user can add an internal link to a private project of another user...
CVE-2017-15206
In Kanboard before 1.0.47, by altering form data, an authenticated user can add an internal link to a private project of another user...
CVE-2017-15206
Kanboard (before 1.0.47) is affected. An authenticated user can modify form data to add an internal link to another user’s private project, due to the underlying vulnerability in Kanboard prior to 1.0.47. Remediation is to upgrade to 1.0.47 or later (as noted in the public advisory/news). If you ...