2 matches found
CVE-2021-41657
SmartBear CodeCollaborator v6.1.6102 contains a web UI vulnerability that enables clickjacking. The affected component is the CodeCollaborator web UI; the underlying issue is an insecure handling of embedded frames that allows an attacker to render a hidden frame and trick an authenticated user i...
CVE-2020-26118
CVE-2020-26118 – SmartBear Collaborator Server : All provided sources describe a post-authentication Java deserialization vulnerability in the server’s UpdateMemento handling of user-supplied serialized objects via the Google Web Toolkit (GWT) API, up to version 13.3.13302. The issue allows an au...