Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kanboard kanboard 1.0.6 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2014-3920
Cross-site request forgery (CSRF) vulnerability in Kanboard prior to 1.0.6 allows remote malicious users to hijack the authentication of administrators for requests that add an administrative user via a save action to the default URI.
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.4
Kanboard Kanboard
4
CVSSv2
CVE-2017-15200
In Kanboard prior to 1.0.47, by altering form data, an authenticated user can add a new task to a private project of another user.
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.4
Kanboard Kanboard 1.0.6
Kanboard Kanboard 1.0.7
Kanboard Kanboard 1.0.8
Kanboard Kanboard 1.0.9
Kanboard Kanboard 1.0.10
Kanboard Kanboard 1.0.11
Kanboard Kanboard 1.0.12
Kanboard Kanboard 1.0.13
Kanboard Kanboard 1.0.14
Kanboard Kanboard 1.0.15
Kanboard Kanboard 1.0.16
Kanboard Kanboard 1.0.17
Kanboard Kanboard 1.0.18
Kanboard Kanboard 1.0.19
Kanboard Kanboard 1.0.20
Kanboard Kanboard 1.0.21
4
CVSSv2
CVE-2017-15203
In Kanboard prior to 1.0.47, by altering form data, an authenticated user can remove categories from a private project of another user.
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.4
Kanboard Kanboard 1.0.6
Kanboard Kanboard 1.0.7
Kanboard Kanboard 1.0.8
Kanboard Kanboard 1.0.9
Kanboard Kanboard 1.0.10
Kanboard Kanboard 1.0.11
Kanboard Kanboard 1.0.12
Kanboard Kanboard 1.0.13
Kanboard Kanboard 1.0.14
Kanboard Kanboard 1.0.15
Kanboard Kanboard 1.0.16
Kanboard Kanboard 1.0.17
Kanboard Kanboard 1.0.18
Kanboard Kanboard 1.0.19
Kanboard Kanboard 1.0.20
Kanboard Kanboard 1.0.21
4
CVSSv2
CVE-2017-15207
In Kanboard prior to 1.0.47, by altering form data, an authenticated user can edit tasks of a private project of another user.
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.4
Kanboard Kanboard 1.0.6
Kanboard Kanboard 1.0.7
Kanboard Kanboard 1.0.8
Kanboard Kanboard 1.0.9
Kanboard Kanboard 1.0.10
Kanboard Kanboard 1.0.11
Kanboard Kanboard 1.0.12
Kanboard Kanboard 1.0.13
Kanboard Kanboard 1.0.14
Kanboard Kanboard 1.0.15
Kanboard Kanboard 1.0.16
Kanboard Kanboard 1.0.17
Kanboard Kanboard 1.0.18
Kanboard Kanboard 1.0.19
Kanboard Kanboard 1.0.20
Kanboard Kanboard 1.0.21
4
CVSSv2
CVE-2017-15209
In Kanboard prior to 1.0.47, by altering form data, an authenticated user can remove attachments from a private project of another user.
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.4
Kanboard Kanboard 1.0.6
Kanboard Kanboard 1.0.7
Kanboard Kanboard 1.0.8
Kanboard Kanboard 1.0.9
Kanboard Kanboard 1.0.10
Kanboard Kanboard 1.0.11
Kanboard Kanboard 1.0.12
Kanboard Kanboard 1.0.13
Kanboard Kanboard 1.0.14
Kanboard Kanboard 1.0.15
Kanboard Kanboard 1.0.16
Kanboard Kanboard 1.0.17
Kanboard Kanboard 1.0.18
Kanboard Kanboard 1.0.19
Kanboard Kanboard 1.0.20
Kanboard Kanboard 1.0.21
4
CVSSv2
CVE-2017-15210
In Kanboard prior to 1.0.47, by altering form data, an authenticated user can see thumbnails of pictures from a private project of another user.
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.4
Kanboard Kanboard 1.0.6
Kanboard Kanboard 1.0.7
Kanboard Kanboard 1.0.8
Kanboard Kanboard 1.0.9
Kanboard Kanboard 1.0.10
Kanboard Kanboard 1.0.11
Kanboard Kanboard 1.0.12
Kanboard Kanboard 1.0.13
Kanboard Kanboard 1.0.14
Kanboard Kanboard 1.0.15
Kanboard Kanboard 1.0.16
Kanboard Kanboard 1.0.17
Kanboard Kanboard 1.0.18
Kanboard Kanboard 1.0.19
Kanboard Kanboard 1.0.20
Kanboard Kanboard 1.0.21
4
CVSSv2
CVE-2017-15212
In Kanboard prior to 1.0.47, by altering form data, an authenticated user can at least see the names of tags of a private project of another user.
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.4
Kanboard Kanboard 1.0.6
Kanboard Kanboard 1.0.7
Kanboard Kanboard 1.0.8
Kanboard Kanboard 1.0.9
Kanboard Kanboard 1.0.10
Kanboard Kanboard 1.0.11
Kanboard Kanboard 1.0.12
Kanboard Kanboard 1.0.13
Kanboard Kanboard 1.0.14
Kanboard Kanboard 1.0.15
Kanboard Kanboard 1.0.16
Kanboard Kanboard 1.0.17
Kanboard Kanboard 1.0.18
Kanboard Kanboard 1.0.19
Kanboard Kanboard 1.0.20
Kanboard Kanboard 1.0.21
4
CVSSv2
CVE-2017-15201
In Kanboard prior to 1.0.47, by altering form data, an authenticated user can edit tags of a private project of another user.
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.4
Kanboard Kanboard 1.0.6
Kanboard Kanboard 1.0.7
Kanboard Kanboard 1.0.8
Kanboard Kanboard 1.0.9
Kanboard Kanboard 1.0.10
Kanboard Kanboard 1.0.11
Kanboard Kanboard 1.0.12
Kanboard Kanboard 1.0.13
Kanboard Kanboard 1.0.14
Kanboard Kanboard 1.0.15
Kanboard Kanboard 1.0.16
Kanboard Kanboard 1.0.17
Kanboard Kanboard 1.0.18
Kanboard Kanboard 1.0.19
Kanboard Kanboard 1.0.20
Kanboard Kanboard 1.0.21
4
CVSSv2
CVE-2017-15204
In Kanboard prior to 1.0.47, by altering form data, an authenticated user can add automatic actions to a private project of another user.
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.4
Kanboard Kanboard 1.0.6
Kanboard Kanboard 1.0.7
Kanboard Kanboard 1.0.8
Kanboard Kanboard 1.0.9
Kanboard Kanboard 1.0.10
Kanboard Kanboard 1.0.11
Kanboard Kanboard 1.0.12
Kanboard Kanboard 1.0.13
Kanboard Kanboard 1.0.14
Kanboard Kanboard 1.0.15
Kanboard Kanboard 1.0.16
Kanboard Kanboard 1.0.17
Kanboard Kanboard 1.0.18
Kanboard Kanboard 1.0.19
Kanboard Kanboard 1.0.20
Kanboard Kanboard 1.0.21
4
CVSSv2
CVE-2017-15205
In Kanboard prior to 1.0.47, by altering form data, an authenticated user can download attachments from a private project of another user.
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.4
Kanboard Kanboard 1.0.6
Kanboard Kanboard 1.0.7
Kanboard Kanboard 1.0.8
Kanboard Kanboard 1.0.9
Kanboard Kanboard 1.0.10
Kanboard Kanboard 1.0.11
Kanboard Kanboard 1.0.12
Kanboard Kanboard 1.0.13
Kanboard Kanboard 1.0.14
Kanboard Kanboard 1.0.15
Kanboard Kanboard 1.0.16
Kanboard Kanboard 1.0.17
Kanboard Kanboard 1.0.18
Kanboard Kanboard 1.0.19
Kanboard Kanboard 1.0.20
Kanboard Kanboard 1.0.21
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »