CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2021-3298 – Collabtive 3.1 - 'address' Persistent Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2021-3298
Collabtive 3.1 allows XSS when an authenticated user enters an XSS payload into the address section of the profile edit page, aka the manageuser.php?action=edit address1 parameter. Collabtive versión 3.1, permite un ataque de tipo XSS cuando un usuario autenticado ingresa una carga útil de tipo XSS en la sección de dirección de la página de edición de perfil, también se conoce como el parámetro address1 de manageuser.php?action=edit • https://www.exploit-db.com/exploits/49468 https://collabtive.o-dyn.de/forum/viewforum.php?f=6 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2020-13655
https://notcve.org/view.php?id=CVE-2020-13655
An issue was discovered in Collabtive 3.0 and later. managefile.php is vulnerable to XSS: when the action parameter is set to movefile and the id parameter corresponds to a project the current user has access to, the file and target parameters are reflected. Se detectó un problema en Collabtive versiones 3.0 y posteriores. El archivo managefile.php es vulnerable a un ataque de tipo XSS: cuando el parámetro action se establece en movefile y el parámetro id corresponde a un proyecto al que el usuario actual tiene acceso, los parámetros file y target son reflejados • http://www.collabtive.o-dyn.de/blog https://sisl.lab.uic.edu/projects/chess/cross-site-scripting-in-collabtive • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2013-5027
https://notcve.org/view.php?id=CVE-2013-5027
Collabtive 1.0 has incorrect access control Collabtive versión 1.0, tiene un control de acceso incorrecto. • https://www.immuniweb.com/advisory/HTB23169 • CWE-269: Improper Privilege Management •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2019-8935 – Collabtive 3.1 Cross Site Scripting
https://notcve.org/view.php?id=CVE-2019-8935
Collabtive 3.1 allows XSS via the manageuser.php?action=profile id parameter. La versión 3.1 de Collabtive permite Cross-Site Scripting (XSS) mediante el parámetro id en manageuser.php?action=profile. Collabtive version 3.1 suffers from a cross site scripting vulnerability. • https://www.netsparker.com/web-applications-advisories/ns-18-052-reflected-cross-site-scripting-in-collabtive • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 1CVE-2015-0258 – Collabtive 2.0 Shell Upload
https://notcve.org/view.php?id=CVE-2015-0258
Multiple incomplete blacklist vulnerabilities in the avatar upload functionality in manageuser.php in Collabtive before 2.1 allow remote authenticated users to execute arbitrary code by uploading a file with a (1) .php3, (2) .php4, (3) .php5, or (4) .phtml extension. Múltiples vulnerabilidades de lista negra incompletas en la funcionalidad de carga de avatar en el archivo manageuser.php en Collabtive versiones anteriores a 2.1, permiten a los usuarios autenticados remotos ejecutar código arbitrario mediante la carga de un archivo con una extensión (1) .php3, (2) .php4, (3) .php5 o (4) .phtml. Collabtive version 2.0 suffers from an arbitrary file upload vulnerability. • http://packetstormsecurity.com/files/133736/Collabtive-2.0-Shell-Upload.html https://github.com/philippK-de/Collabtive/commit/9ce6301583669d0a8ecb4d23fb56e34b68511335 https://lists.debian.org/debian-lts-announce/2020/02/msg00031.html https://usn.ubuntu.com/4590-1 • CWE-434: Unrestricted Upload of File with Dangerous Type •