CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2020-13655
https://notcve.org/view.php?id=CVE-2020-13655
An issue was discovered in Collabtive 3.0 and later. managefile.php is vulnerable to XSS: when the action parameter is set to movefile and the id parameter corresponds to a project the current user has access to, the file and target parameters are reflected. Se detectó un problema en Collabtive versiones 3.0 y posteriores. El archivo managefile.php es vulnerable a un ataque de tipo XSS: cuando el parámetro action se establece en movefile y el parámetro id corresponde a un proyecto al que el usuario actual tiene acceso, los parámetros file y target son reflejados • http://www.collabtive.o-dyn.de/blog https://sisl.lab.uic.edu/projects/chess/cross-site-scripting-in-collabtive • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2013-5027
https://notcve.org/view.php?id=CVE-2013-5027
Collabtive 1.0 has incorrect access control Collabtive versión 1.0, tiene un control de acceso incorrecto. • https://www.immuniweb.com/advisory/HTB23169 • CWE-269: Improper Privilege Management •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2019-8935 – Collabtive 3.1 Cross Site Scripting
https://notcve.org/view.php?id=CVE-2019-8935
Collabtive 3.1 allows XSS via the manageuser.php?action=profile id parameter. La versión 3.1 de Collabtive permite Cross-Site Scripting (XSS) mediante el parámetro id en manageuser.php?action=profile. Collabtive version 3.1 suffers from a cross site scripting vulnerability. • https://www.netsparker.com/web-applications-advisories/ns-18-052-reflected-cross-site-scripting-in-collabtive • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 1CVE-2018-16242 – oBike Electronic Lock Bypass
https://notcve.org/view.php?id=CVE-2018-16242
oBike relies on Hangzhou Luoping Smart Locker to lock bicycles, which allows attackers to bypass the locking mechanism by using Bluetooth Low Energy (BLE) to replay ciphertext based on a predictable nonce used in the locking protocol. oBike depende de Hangzhou Luoping Smart Locker para bloquear bicicletas, lo que permite que los atacantes omitan el mecanismo de bloqueo mediante el uso de Bluetooth Low Energy (BLE) para reproducir texto cifrado en base a un nonce predecible empleado en el protocolo de bloqueo. oBike Electronic Lock suffers from an access control bypass vulnerability via a replay attack on a predictable nonce. • https://seclists.org/bugtraq/2018/Sep/30 • CWE-294: Authentication Bypass by Capture-replay •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 1CVE-2015-0258 – Collabtive 2.0 Shell Upload
https://notcve.org/view.php?id=CVE-2015-0258
Multiple incomplete blacklist vulnerabilities in the avatar upload functionality in manageuser.php in Collabtive before 2.1 allow remote authenticated users to execute arbitrary code by uploading a file with a (1) .php3, (2) .php4, (3) .php5, or (4) .phtml extension. Múltiples vulnerabilidades de lista negra incompletas en la funcionalidad de carga de avatar en el archivo manageuser.php en Collabtive versiones anteriores a 2.1, permiten a los usuarios autenticados remotos ejecutar código arbitrario mediante la carga de un archivo con una extensión (1) .php3, (2) .php4, (3) .php5 o (4) .phtml. Collabtive version 2.0 suffers from an arbitrary file upload vulnerability. • http://packetstormsecurity.com/files/133736/Collabtive-2.0-Shell-Upload.html https://github.com/philippK-de/Collabtive/commit/9ce6301583669d0a8ecb4d23fb56e34b68511335 https://lists.debian.org/debian-lts-announce/2020/02/msg00031.html https://usn.ubuntu.com/4590-1 • CWE-434: Unrestricted Upload of File with Dangerous Type •