Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2023/05/31 12:0 a.m.21 views

FreeBSD : Kanboard -- Clipboard based cross-site scripting (blocked with default CSP) in Kanboard (79514fcd-feb4-11ed-92b5-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 79514fcd-feb4-11ed-92b5-b42e991fc52e advisory. - Kanboard is project management software that focuses on the Kanban methodology. Due to improper...

5.4CVSS5.6AI score0.00513EPSS
Exploits0References3
NVD
NVD
added 2023/05/30 5:15 a.m.28 views

CVE-2023-32685

Kanboard is project management software that focuses on the Kanban methodology. Due to improper handling of elements under the contentEditable element, maliciously crafted clipboard content can inject arbitrary HTML tags into the DOM. A low-privileged attacker with permission to attach a document...

5.4CVSS4.6AI score0.00513EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/05/30 4:11 a.m.12 views

CVE-2023-32685 Clipboard based cross-site scripting (blocked with default CSP) in Kanboard

Kanboard is project management software that focuses on the Kanban methodology. Due to improper handling of elements under the contentEditable element, maliciously crafted clipboard content can inject arbitrary HTML tags into the DOM. A low-privileged attacker with permission to attach a document...

4.4CVSS5.2AI score0.00513EPSS
Exploits0References3
CVE
CVE
added 2023/05/30 4:11 a.m.63 views

CVE-2023-32685

Kanboard (Kanban project management) contains a clipboard-based XSS flaw tracked as CVE-2023-32685. The root cause is improper handling of elements under contentEditable, enabling a low-privileged attacker with document-attachment permission to inject arbitrary HTML via malicious clipboard conten...

5.4CVSS4.7AI score0.00513EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/05/30 4:11 a.m.26 views

CVE-2023-32685 Clipboard based cross-site scripting (blocked with default CSP) in Kanboard

Kanboard is project management software that focuses on the Kanban methodology. Due to improper handling of elements under the contentEditable element, maliciously crafted clipboard content can inject arbitrary HTML tags into the DOM. A low-privileged attacker with permission to attach a document...

4.4CVSS5.1AI score0.00513EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/05/30 4:11 a.m.25 views

CVE-2023-32685 Clipboard based cross-site scripting (blocked with default CSP) in Kanboard

Kanboard is project management software that focuses on the Kanban methodology. Due to improper handling of elements under the contentEditable element, maliciously crafted clipboard content can inject arbitrary HTML tags into the DOM. A low-privileged attacker with permission to attach a document...

4.4CVSS5.4AI score0.00513EPSS
Exploits0References3
Rows per page
Query Builder