Description
Collabtive 3.1 is vulnerable to Cross-site scripting (XSS) via the name parameter under action=system and the company/contact parameters under action=addcust within admin.php file.
Remediation
References
Related Vulnerabilities
OpenVPN AS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-2061)
MediaWiki CVE-2020-25813 Vulnerability (CVE-2020-25813)
MySQL CVE-2013-2375 Vulnerability (CVE-2013-2375)
WebLogic Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2019-17195)
Oracle Application Server CVE-2009-3407 Vulnerability (CVE-2009-3407)