CVE-2017-15201by Jeremyin Security Bulletinson Posted on October 11, 2017 In Kanboard before 1.0.47, by altering form data, an authenticated user can edit tags of a private project of another user.