2 matches found
CVE-2010-5284
CVE-2010-5284 affects Collabtive 0.6.5 with multiple XSS vulnerabilities. The issues stem from unsanitized user input in three parameters: User (edit profile), y (newcal action), and pic (thumb). Impact is remote script/HTML injection in the context of the affected web app; exploit details or CVS...
Collabtive Cross Site Scripting and HTML Injection Vulnerabilities
Collabtive is prone to multiple cross-site scripting vulnerabilities and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted...