CVE-2020-25400

Published November 17th, 2020

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

MEDIUM

Affected

PROJECT

Description

Cross domain policies in Taskcafe Project Management tool before version 0.1.0 and 0.1.1 allows remote attackers to access sensitive data such as access token.

JordanKnott/taskcafe

An open source project management tool with Kanban boards

GitHub

5.2K