Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/05/23 2:3 a.m.6 views

CVE-2023-33970

Kanboard is open source project management software that focuses on the Kanban methodology. A vulnerability related to a missing access control was found, which allows a User with the lowest privileges to leak all the tasks and projects titles within the software, even if they are not invited or...

6.5CVSS6.4AI score0.00516EPSS
Exploits1References1
nessus
nessus
added 2023/06/06 12:0 a.m.24 views

FreeBSD : Kanboard -- Multiple vulnerabilities (bfca647c-0456-11ee-bafd-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the bfca647c-0456-11ee-bafd-b42e991fc52e advisory. - Kanboard is open source project management software that focuses on the Kanban methodology...

6.5CVSS6.5AI score0.00625EPSS
Exploits4References9
ubuntucve
ubuntucve
added 2023/06/05 8:15 p.m.5 views

CVE-2023-33970

Kanboard is open source project management software that focuses on the Kanban methodology. A vulnerability related to a missing access control was found, which allows a User with the lowest privileges to leak all the tasks and projects titles within the software, even if they are not invited or...

6.5CVSS6.6AI score0.00516EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2023/06/05 7:54 p.m.9 views

CVE-2023-33970 Missing access control in internal task links feature in Kanboard

Kanboard is open source project management software that focuses on the Kanban methodology. A vulnerability related to a missing access control was found, which allows a User with the lowest privileges to leak all the tasks and projects titles within the software, even if they are not invited or...

5.4CVSS6.7AI score0.00516EPSS
Exploits1References2
cve
cve
added 2023/06/05 7:54 p.m.51 views

CVE-2023-33970

Kanboard CVE-2023-33970 corresponds to a missing access control vulnerability in the internal task links feature. A low-privileged user can leak all task and project titles, even in personal or uninvited projects, potentially exposing private/critical information contained in titles. The issue is...

6.5CVSS5.7AI score0.00516EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder