CVE-2024-48708

Опубликовано: 22 окт. 2024

Источник: debian

Описание

Collabtive 3.1 is vulnerable to Cross-Site Scripting (XSS) via the name parameter in (a) file tasklist.php under action = add/edit and in (b) file admin.php under action = adduser/edituser.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
collabtive	removed			package

Связанные уязвимости

CVE-2024-48708

CVSS3: 5.4

ubuntu

больше 1 года назад

Collabtive 3.1 is vulnerable to Cross-Site Scripting (XSS) via the name parameter in (a) file tasklist.php under action = add/edit and in (b) file admin.php under action = adduser/edituser.

CVE-2024-48708

CVSS3: 5.4

nvd

больше 1 года назад

Collabtive 3.1 is vulnerable to Cross-Site Scripting (XSS) via the name parameter in (a) file tasklist.php under action = add/edit and in (b) file admin.php under action = adduser/edituser.

GHSA-69wp-fr5p-gf28

CVSS3: 5.4

github

больше 1 года назад

Collabtive 3.1 is vulnerable to Cross-Site Scripting (XSS) via the name parameter in (a) file tasklist.php under action = add/edit and in (b) file admin.php under action = adduser/edituser.