Cross-site request forgery (CSRF) vulnerability in Kanboard prior to 1.0.6 allows remote malicious users to hijack the authentication of administrators for requests that add an administrative user via a save action to the default URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
kanboard kanboard |
||
kanboard kanboard 1.0.5 |
||
kanboard kanboard 1.0.4 |
||
kanboard kanboard 1.0.1 |
||
kanboard kanboard 1.0.0 |
||
kanboard kanboard 1.0.3 |
||
kanboard kanboard 1.0.2 |