CVE-2024-48706

Опубликовано: 22 окт. 2024

Источник: debian

EPSS Низкий

Описание

Collabtive 3.1 is vulnerable to Cross-site scripting (XSS) via the title parameter with action=add or action=editform within the (a) managemessage.php file and (b) managetask.php file respectively.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
collabtive	removed			package

EPSS

Процентиль: 38%

0.00161

Низкий

Связанные уязвимости

CVE-2024-48706

CVSS3: 5.4

ubuntu

больше 1 года назад

Collabtive 3.1 is vulnerable to Cross-site scripting (XSS) via the title parameter with action=add or action=editform within the (a) managemessage.php file and (b) managetask.php file respectively.

CVE-2024-48706

CVSS3: 5.4

nvd

больше 1 года назад

Collabtive 3.1 is vulnerable to Cross-site scripting (XSS) via the title parameter with action=add or action=editform within the (a) managemessage.php file and (b) managetask.php file respectively.

GHSA-jp89-qg38-336v

CVSS3: 5.4

github

больше 1 года назад

Collabtive 3.1 is vulnerable to Cross-site scripting (XSS) via the title parameter with action=add or action=editform within the (a) managemessage.php file and (b) managetask.php file respectively.

EPSS

Процентиль: 38%

0.00161

Низкий