Vulnerabilities > Andrew Simpson > Webcollab > 2.71
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-11-02 | CVE-2013-2652 | Cross-Site Scripting vulnerability in Andrew Simpson Webcollab CRLF injection vulnerability in help/help_language.php in WebCollab 3.30 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the item parameter. | 4.3 |