CVE-2013-5027: Collabtive install.php security bypass

ID CVE-2013-5027
Type cve
Reporter NVD
Modified 2013-08-28T00:00:00


Collabtive could allow a remote attacker to bypass security restrictions, caused by improper validation of access permissions by the install.php script. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to create a new user with administrative privileges and gain unauthorized administrative access to the vulnerable application.