CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2006/01/11 9:3 p.m.•17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the file manager utility in Hummingbird Collaboration aka Hummingbird Enterprise Collaboration 5.21 and earlier allows remote attackers to inject arbitrary web script or HTML in an uploaded page, which is published without a check for hostile scripting...

3.5CVSS6.1AI score0.011EPSS

Exploits1References6Affected Software1

Prion•added 2006/01/11 9:3 p.m.•13 views

Design/Logic Flaw

Hummingbird Collaboration aka Hummingbird Enterprise Collaboration 5.21 and earlier allows remote attackers to obtain sensitive information intranet IP addresses and enumerations of valid parameter values via a direct request to hc, which reveals the information in an error message or a cookie...

4CVSS6.7AI score0.02751EPSS

Exploits1References7Affected Software2

NVD•added 2006/01/11 9:3 p.m.•9 views

CVE-2006-0173

Hummingbird Collaboration aka Hummingbird Enterprise Collaboration 5.21 and earlier allows remote attackers to misrepresent the type and name of a file via modified docext and id parameters, which might trick a user into downloading dangerous or unexpected content...

4CVSS6.7AI score0.02202EPSS

NVD•added 2006/01/11 9:3 p.m.•15 views

CVE-2006-0174

4CVSS6.2AI score0.02751EPSS

Exploits1References7

NVD•added 2006/01/11 9:3 p.m.•10 views

CVE-2006-0172

3.5CVSS5.6AI score0.011EPSS

CVE•added 2006/01/11 9:0 p.m.•47 views

CVE-2006-0172

The CVE-2006-0172 entry describes a Cross-site Scripting (XSS) vulnerability in the file manager utility of Hummingbird Collaboration (Hummingbird Enterprise Collaboration) 5.21 and earlier. The issue allows remote attackers to inject arbitrary web script or HTML into an uploaded page, which is p...

3.5CVSS5.6AI score0.011EPSS

Exploits1References6Affected Software1

CVE•added 2006/01/11 9:0 p.m.•36 views

CVE-2006-0173

Hummingbird Collaboration (Hummingbird Enterprise Collaboration)

4CVSS6.7AI score0.02202EPSS

Exploits1References6Affected Software1

CVE•added 2006/01/11 9:0 p.m.•47 views

CVE-2006-0174

Vulnerability CVE-2006-0174 affects Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier. A direct request to hc can cause information disclosure: intranet IP addresses and enumerations of valid parameter values are exposed, typically in an error message or a cook...

4CVSS6.2AI score0.02751EPSS

Exploits1References7Affected Software2

Cvelist•added 2006/01/11 9:0 p.m.•13 views

CVE-2006-0172

5.6AI score0.011EPSS

Cvelist•added 2006/01/11 9:0 p.m.•13 views

CVE-2006-0173

6.7AI score0.02202EPSS

Cvelist•added 2006/01/11 9:0 p.m.•16 views

CVE-2006-0174

6.2AI score0.02751EPSS

Exploits1References7

exploitpack•added 2006/01/10 12:0 a.m.•18 views

Hummingbird Collaboration - Crafted URL File Property Obscuration Download

Hummingbird Collaboration - Crafted URL File Property Obscuration Download source: https://www.securityfocus.com/bid/16195/info Hummingbird Enterprise Collaboration is prone to multiple vulnerabilities. The following specific issues were identified: The application reportedly allows remote...

7.4AI score

exploitpack•added 2006/01/10 12:0 a.m.•24 views

Hummingbird Collaboration - Application Cookie Internal Network Information Disclosure

Hummingbird Collaboration - Application Cookie Internal Network Information Disclosure source: https://www.securityfocus.com/bid/16195/info Hummingbird Enterprise Collaboration is prone to multiple vulnerabilities. The following specific issues were identified: The application reportedly allows...

7.2AI score

Exploit DB•added 2006/01/10 12:0 a.m.•31 views

Hummingbird Collaboration - Crafted URL File Property Obscuration Download

source: https://www.securityfocus.com/bid/16195/info Hummingbird Enterprise Collaboration is prone to multiple vulnerabilities. The following specific issues were identified: The application reportedly allows remote attackers to upload arbitrary HTML files and script code to the application...

7AI score

Exploit DB•added 2006/01/10 12:0 a.m.•41 views

Hummingbird Collaboration - Application Cookie Internal Network Information Disclosure

7AI score

Saint•added 2005/11/29 12:0 a.m.•34 views

Hummingbird InetD LPD buffer overflow

Added: 11/29/2005 CVE: CVE-2005-1815 BID: 13788 OSVDB: 16957 Background Hummingbird InetD implements common UNIX services on Windows platforms. Problem The Hummingbird InetD LPD service is affected by a buffer overflow which allows remote command execution. Resolution Apply the patch. References...

5CVSS7.2AI score0.47192EPSS

Saint•added 2005/11/29 12:0 a.m.•29 views

Hummingbird InetD LPD buffer overflow

5CVSS7.2AI score0.47192EPSS

Saint•added 2005/11/29 12:0 a.m.•33 views

Hummingbird InetD LPD buffer overflow

5CVSS7.2AI score0.47192EPSS