3 matches found
CVE-2014-2301
OrbiTeam BSCW contains an information-disclosure flaw in the pub/bscw.cgi/?op=inf path. Versions ≤ 5.0.7 (pre-5.0.8) allow unauthenticated attackers to read metadata for internal objects (e.g., filenames, and potentially email addresses). The root cause is information leakage via the inf operatio...
OrbiTeam BSCW 5.0.7 Metadata Information Disclosure Vulnerability
RedTeam Pentesting discovered an information disclosure vulnerability in OrbiTeam's BSCW collaboration software. An unauthenticated attacker can disclose metadata about internal objects which are stored in BSCW. Versions 5.0.7 and below are affected. RedTeam Pentesting discovered an information...
OrbiTeam BSCW 5.0.7 Metadata Information Disclosure
Advisory: Metadata Information Disclosure in OrbiTeam BSCW RedTeam Pentesting discovered an information disclosure vulnerability in OrbiTeam's BSCW collaboration software. An unauthenticated attacker can disclose metadata about internal objects which are stored in BSCW. Details ======= Product:...