Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-6908

Malware in sbrugna...

6.5CVSS6.4AI score0.07874EPSS
Exploits0References5
NVD
NVD
added 2009/08/12 10:30 a.m.14 views

CVE-2008-6948

Unrestricted file upload vulnerability in Collabtive 0.4.8 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension and using a text/plain MIME type, then accessing it via a direct request to the file in files/, related to 1 the showproject acti...

6.5CVSS7.3AI score0.07874EPSS
Exploits0References4
Prion
Prion
added 2009/08/12 10:30 a.m.12 views

Unrestricted file upload

Unrestricted file upload vulnerability in Collabtive 0.4.8 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension and using a text/plain MIME type, then accessing it via a direct request to the file in files/, related to 1 the showproject acti...

6.5CVSS7.9AI score0.07874EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2009/08/12 10:30 a.m.17 views

CVE-2008-6946

Cross-site scripting XSS vulnerability in manageproject.php in Collabtive 0.4.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via the project Name, which is not properly handled when the administrator performs an editform action, related to admin.php...

4.3CVSS5.7AI score0.03435EPSS
Exploits0References4
Cvelist
Cvelist
added 2009/08/12 10:0 a.m.25 views

CVE-2008-6949

Multiple cross-site request forgery CSRF vulnerabilities in Collabtive 0.4.8 allow remote attackers to hijack the authentication of administrators for requests that 1 submit or edit a new project, or 2 upload files to a project, or 3 attach files to messages via unknown vectors. NOTE: these issue...

7.3AI score0.0179EPSS
Exploits0References2
CVE
CVE
added 2009/08/12 10:0 a.m.44 views

CVE-2008-6949

CVE-2008-6949 affects Collabtive 0.4.8 with multiple CSRF vulnerabilities that let an attacker hijack administrator authentication to perform actions such as submitting or editing a project, uploading files to a project, or attaching files to messages. The issues may be leveraged with other vulne...

6.8CVSS7.4AI score0.0179EPSS
Exploits0References2Affected Software1
0day.today
0day.today
added 2008/11/10 12:0 a.m.23 views

Collabtive 0.4.8 (XSS/Auth Bypass/Upload) Multiple Vulnerabilities

Exploit for unknown platform in category web applications ================================================================== Collabtive 0.4.8 XSS/Auth Bypass/Upload Multiple Vulnerabilities ================================================================== Collabtive 0.4.8 Multiple Vulnerabilitie...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/11/10 12:0 a.m.42 views

Collabtive 0.4.8 - Cross-Site Scripting / Authentication Bypass / Arbitrary File Upload

Collabtive 0.4.8 Multiple Vulnerabilities Name Multiple Vulnerabilities in Collabtive Systems Affected Collabtive 0.4.8 and possibly earlier versions Severity High Impact CVSSv2 High 8/10, vector: AV:N/AC:L/Au:S/C:P/I:C/A:P Vendor http://collabtive.o-dyn.de/ Advisory...

7.4AI score
Exploits0
Rows per page
Query Builder