CVE-2024-36399

CVSS V2 None CVSS V3 None

Description

Kanboard is project management software that focuses on the Kanban methodology. The vuln is in app/Controller/ProjectPermissionController.php function addUser(). The users permission to add users to a project only get checked on the URL parameter project_id. If the user is authorized to add users to this project the request gets processed. The users permission for the POST BODY parameter project_id does not get checked again while processing. An attacker with the 'Project Manager' on a single project may take over any other project. The vulnerability is fixed in 1.2.37.

Overview

CVE ID
CVE-2024-36399

Assigner
GitHub_M

Vulnerability Status
PUBLISHED

Published Version
2024-06-06T15:15:46.978Z

Last Modified Date
2024-06-06T17:57:49.863Z

Weakness Enumerations

CWE	URL
CWE-284	http://cwe.mitre.org/data/definitions/284.html
CWE-285	http://cwe.mitre.org/data/definitions/285.html
CWE-639	http://cwe.mitre.org/data/definitions/639.html

References

Reference URL	Reference Tags
https://github.com/kanboard/kanboard/security/advisories/GHSA-x8v7-3ghx-65cv	x_refsource_CONFIRM
https://github.com/kanboard/kanboard/commit/b6703688aac8187f5ea4d4d704fc7afeeffeafa7	x_refsource_MISC

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-36399
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36399

History

Created	Old Value	New Value	Data Type	Notes
2024-06-26 10:58:42				Added to TrackCVE