Public CVE-2017-15207 disclosure

In Kanboard before 1.0.47, by altering form data, an authenticated user can remove automatic actions from a private project of another user.