CNNVD-202602-1577 Information

CNNVD ID

CNNVD-202602-1577

Related CVE

CVE-2026-24885

• CNNVD Published: 2026-02-10

Description (Chinese)

Kanboard是Kanboard开源的一套开源的可视化任务板软件。该软件能够根据业务定制面板。 Kanboard 1.2.50之前版本存在安全漏洞，该漏洞源于未严格强制执行application/json Content-Type，可能导致跨站请求伪造。

Description (English)

Kanboard is an open-source, visualized taskboard software for Kanboard. The software is able to customize the panel according to business. There was a security loophole in the previous version of Kanboard 1.2.50, which stemmed from the lack of strict enforcement of application/json Content-Type, which could lead to cross-site requests for forgery.

Vulnerability Type

其他

Affected Vendor

Kanboard

Published

2026-02-10

Last Modified

2026-02-24

References

https://github.com/kanboard/kanboard/releases/tag/v1.2.50 https://github.com/kanboard/kanboard/security/advisories/GHSA-582j-h4w4-hwr5 https://github.com/kanboard/kanboard/commit/2c56d92783d4a3094812c2f7cba50f80a372f95e https://access.redhat.com/security/cve/cve-2026-24885

Patch

https://kanboard.org/