Vulnerabilities > O DYN > Low

DATE CVE VULNERABILITY TITLE RISK
2021-01-29 CVE-2021-3298 Cross-site Scripting vulnerability in O-Dyn Collabtive 3.1
Collabtive 3.1 allows XSS when an authenticated user enters an XSS payload into the address section of the profile edit page, aka the manageuser.php?action=edit address1 parameter.
network
o-dyn CWE-79
3.5
3.5
2019-02-19 CVE-2019-8935 Cross-site Scripting vulnerability in O-Dyn Collabtive 3.1
Collabtive 3.1 allows XSS via the manageuser.php?action=profile id parameter.
network
o-dyn CWE-79
3.5
3.5