|
Collabtive Multiple Remote Vulnerabilities
Collabtive is prone to multiple remote vulnerabilities, including: - An HTML-injection vulnerability - An arbitrary-file-upload vulnerability - An authentication-bypass vulnerability - An information-disclosure vulnerability A successful exploit of these issues may allow an attacker to obtain sensitive information, execute arbitrary script code within the context of the browser, steal cookie-based authentication credentials, gain unauthorized access to the affected application, compromise the application, and execute arbitrary script code within the context of the webserver process. Other attacks are also possible. Collabtive 0.4.8 is vulnerable; other versions may also be affected. |
|
|
Privacy Statement |
