Package: kanboard Severity: important Tags: security upstream X-Debbugs-Cc: t...@security.debian.org, j...@nahmias.net, Debian Security Team <t...@security.debian.org>
https://github.com/kanboard/kanboard/security/advisories/GHSA-9gvq-78jp-jxcx Summary During a review of this project, I found multiple SQL Injections. It appears that in some insert and update operations, the code improperly uses the PicoDB library to update/insert new information.
