Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6946

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-6946
Last Modified 12 Aug 2009 12:00:00
Published 12 Aug 2009 06:30:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-6946

Summary

Cross-site scripting (XSS) vulnerability in manageproject.php in Collabtive 0.4.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via the project Name, which is not properly handled when the administrator performs an editform action, related to admin.php.

Vulnerable Systems

Application

  • Collabtive 0.4.8


References

XF - collabtive-admin-xss(46496)

BID - 32229

BUGTRAQ - 20081110 Collabtive 0.4.8 Multiple Vulnerabilities

MILW0RM - 7076


Last Updated: 27 May 2016 10:49:24