CVE-2014-3246

2014-05-13T14:55:00
ID CVE-2014-3246
Type cve
Reporter cve@mitre.org
Modified 2014-05-14T15:40:00

Description

SQL injection vulnerability in Collabtive 1.2 allows remote authenticated users to execute arbitrary SQL commands via the folder parameter in a fileview_list action to manageajax.php.