Описание
Kanboard is project management software focused on Kanban methodology. Versions prior to 1.2.51 have an authenticated SQL injection vulnerability. Attackers with the permission to add users to a project can leverage this vulnerability to dump the entirety of the kanboard database. Version 1.2.51 fixes the issue.
Ссылки
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.51 (исключая)
cpe:2.3:a:kanboard:kanboard:*:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.00027
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 6.5
ubuntu
12 дней назад
(Kanboard is project management software focused on Kanban methodology. ...)
CVSS3: 6.5
debian
12 дней назад
Kanboard is project management software focused on Kanban methodology. ...
EPSS
Процентиль: 8%
0.00027
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-89