Password Reset Vulnerability in Kanboard 1.0.46 and Earlier

Password Reset Vulnerability in Kanboard 1.0.46 and Earlier

CVE-2017-12850 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

An authenticated standard user could reset the password of other users (including the admin) by altering form data. Affects kanboard before 1.0.46.

Learn more about our User Device Pen Test.