FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

kanboard -- multiple privilege escalation vulnerabilities

Affected packages
kanboard < 1.0.46

Details

VuXML ID 7d7e05fb-64da-435a-84fb-4061493b89b9
Discovery 2017-08-15
Entry 2017-08-26

chbi reports:

an authenticated standard user could reset the password of another user (including admin) by altering form data.

References

CVE Name CVE-2017-12850
CVE Name CVE-2017-12851
URL https://kanboard.net/news/version-1.0.46