Vulnerabilities > O DYN > Collabtive > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-01-29 | CVE-2021-3298 | Cross-site Scripting vulnerability in O-Dyn Collabtive 3.1 Collabtive 3.1 allows XSS when an authenticated user enters an XSS payload into the address section of the profile edit page, aka the manageuser.php?action=edit address1 parameter. | 3.5 |
2019-02-19 | CVE-2019-8935 | Cross-site Scripting vulnerability in O-Dyn Collabtive 3.1 Collabtive 3.1 allows XSS via the manageuser.php?action=profile id parameter. | 3.5 |