CVE-2017-15198

by Jeremyin Security Bulletinson Posted on

In Kanboard before 1.0.47, by altering form data, an authenticated user can edit a category of a private project of another user.