Collabtive Multiple Remote Input Validation Vulnerabilities Network Vulnerability

Summary

Collabtive is prone to multiple remote input-validation vulnerabilities including cross-site scripting, HTML-injection, and directory-traversal issues. Attackers can exploit these issues to obtain sensitive information, execute arbitrary script code, and steal cookie-based authentication credentials. Collabtive 0.6.5 is vulnerable other versions may also be affected.

References

http://www.collabtive.com/
http://www.securityfocus.com/archive/1/517266
http://www.securityfocus.com/archive/1/517267
https://www.securityfocus.com/bid/47105

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Adobe ColdFusion HTTP Response Splitting Vulnerability
Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
Apache CouchDB Cross Site Request Forgery Vulnerability
A Really Simple Chat Multiple XSS Vulnerabilities
Apache Solr XML External Entity(XXE) Vulnerability-01 Jan-14

Take action and discover your vulnerabilities