A vulnerability has been found in Kanboard up to 1.2.7 (Forum Software) and classified as problematic. This vulnerability affects some unknown processing of the file app/Core/Paginator.php of the component Sort Handler. The manipulation with an unknown input leads to a cross site scripting vulnerability. The CWE definition for the vulnerability is CWE-79. The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. As an impact it is known to affect integrity. CVE summarizes:

app/Core/Paginator.php in Kanboard before 1.2.8 has XSS in pagination sorting.

The bug was discovered 02/01/2019. The weakness was released 02/04/2019 (Website). The advisory is available at seclists.org. This vulnerability was named CVE-2019-7324 since 02/04/2019. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. Successful exploitation requires user interaction by the victim. Technical details are known, but there is no available exploit. This vulnerability is assigned to T1059.007 by the MITRE ATT&CK project.

The vulnerability was handled as a non-public zero-day exploit for at least 3 days. During that time the estimated underground price was around $0-$5k. By approaching the search of inurl:app/Core/Paginator.php it is possible to find vulnerable targets with Google Hacking.

Upgrading to version 1.2.8 eliminates this vulnerability.

Productinfo

Type

• Forum Software

Name

• Kanboard

Version

• 1.2.0
• 1.2.1
• 1.2.2
• 1.2.3
• 1.2.4
• 1.2.5
• 1.2.6
• 1.2.7

License

• open-source

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion