2 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in A51 D.O.O. activeCollab 0.7.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2009-1772...
CVE-2009-1772
CVE-2009-1772 is an XSS vulnerability in activeCollab 2.1 Corporate where the re_route parameter in the login script allows remote attackers to inject arbitrary web script or HTML. The connected documents corroborate the vector as a login-script parameter, but do not provide additional exploitati...