CVE-2014-3247

2014-05-15T10:55:07
ID CVE-2014-3247
Type cve
Reporter NVD
Modified 2015-07-31T21:38:14

Description

Cross-site scripting (XSS) vulnerability in Collabtive 1.2 allows remote authenticated users to inject arbitrary web script or HTML via the desc parameter in an Add project (addpro) action to admin.php.