Collabtive Multiple Remote Input Validation Vulnerabilities Network Vulnerability

Summary

Collabtive is prone to multiple remote input-validation vulnerabilities including cross-site scripting, HTML-injection, and directory-traversal issues. Attackers can exploit these issues to obtain sensitive information, execute arbitrary script code, and steal cookie-based authentication credentials. Collabtive 0.6.5 is vulnerable other versions may also be affected.

References

http://www.collabtive.com/
http://www.securityfocus.com/archive/1/517266
http://www.securityfocus.com/archive/1/517267
https://www.securityfocus.com/bid/47105

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

AjaXplorer 'doc_file' Parameter Local File Disclosure Vulnerability
Aardvark Topsites <= 4.2.2 Remote File Inclusion Vulnerability
Apache Archiva Home Page Cross-Site Scripting vulnerability
APC PowerChute Network Shutdown 'security/applet' Cross Site Scripting Vulnerability
Allaire JRun directory browsing vulnerability

Take action and discover your vulnerabilities