3 matches found
CVE-2023-36813
Kanboard is project management software that focuses on the Kanban methodology. In versions prior to 1.2.31authenticated user is able to perform a SQL Injection, leading to a privilege escalation or loss of confidentiality. It appears that in some insert and update operations, the code improperly...
CVE-2023-36813 Kanboard Authenticated SQL Injections vulnerability
Kanboard is project management software that focuses on the Kanban methodology. In versions prior to 1.2.31authenticated user is able to perform a SQL Injection, leading to a privilege escalation or loss of confidentiality. It appears that in some insert and update operations, the code improperly...
CVE-2023-36813
CVE-2023-36813 details (mode C): Kanboard (Kanban project management) prior to version 1.2.31 is vulnerable to an SQL injection that can be exploited by an authenticated user, potentially causing privilege escalation or loss of confidentiality. The issue stems from improper use of the PicoDB libr...