Vulnerabilities > Kanbanwp

DATE CVE VULNERABILITY TITLE RISK
2023-12-29 CVE-2023-40606 Code Injection vulnerability in Kanbanwp Kanban Boards for Wordpress
Improper Control of Generation of Code ('Code Injection') vulnerability in Kanban for WordPress Kanban Boards for WordPress.This issue affects Kanban Boards for WordPress: from n/a through 2.5.21.
network
low complexity
kanbanwp CWE-94
7.2
2023-06-27 CVE-2023-0873 Unspecified vulnerability in Kanbanwp Kanban Boards for Wordpress
The Kanban Boards for WordPress plugin before 2.5.21 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
network
low complexity
kanbanwp
4.8
2023-06-22 CVE-2023-34368 Unspecified vulnerability in Kanbanwp Kanban Boards
Auth.
network
low complexity
kanbanwp
4.8
2023-05-09 CVE-2023-23884 Unspecified vulnerability in Kanbanwp Kanban Boards for Wordpress
Auth.
network
low complexity
kanbanwp
4.8