Vulnerabilities > Activecollab

DATE	CVE	VULNERABILITY TITLE	RISK
2011-01-07	CVE-2010-0215	Permissions, Privileges, and Access Controls vulnerability in Activecollab ActiveCollab before 2.3.2 allows remote authenticated users to bypass intended access restrictions, and (1) delete an attachment or (2) subscribe to an object, via a crafted URL. network activecollab CWE-264	6.0
2009-06-12	CVE-2009-2041	Cross-Site Scripting vulnerability in Activecollab 0.7.1 Cross-site scripting (XSS) vulnerability in A51 D.O.O. network activecollab CWE-79	4.3
2009-05-22	CVE-2009-1773	Improper Input Validation vulnerability in Activecollab 2.1.0 activeCollab 2.1 Corporate allows remote attackers to obtain sensitive information via an invalid re_route parameter to the login script, which reveals the installation path in an error message. network low complexity activecollab CWE-20	5.0
2009-05-22	CVE-2009-1772	Cross-Site Scripting vulnerability in Activecollab 2.1.0 Cross-site scripting (XSS) vulnerability in activeCollab 2.1 Corporate allows remote attackers to inject arbitrary web script or HTML via the re_route parameter to the login script. network activecollab CWE-79	4.3

Vulnerabilities > Activecollab {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Activecollab"}]}