3 matches found
Gentoo Security Advisory GLSA 200812-20 (phpcollab)
The remote host is missing updates announced in advisory GLSA 200812-20. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
phpCollab: Multiple vulnerabilities
Background phpCollab is a web-enabled groupware and project management software written in PHP. It uses SQL-based database backends. Description Multiple vulnerabilities have been found in phpCollab: rgod reported that data sent to general/sendpassword.php via the loginForm parameter is not...
CVE-2006-1495
CVE-2006-1495 describes an SQL injection in general/sendpassword.php (forgotten password flow) affecting PHPCollab 2.4 and 2.5.rc3, and NetOffice 2.5.3-pl1 and 2.6.0b2. The issue stems from unsanitized loginForm input used in an SQL statement, enabling remote attackers to execute arbitrary SQL co...