2.60

DATE	CVE	VULNERABILITY TITLE	RISK
2013-11-02	CVE-2013-2652	Cross-Site Scripting vulnerability in Andrew Simpson Webcollab CRLF injection vulnerability in help/help_language.php in WebCollab 3.30 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the item parameter. network andrew-simpson CWE-79	4.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.