CVE

CVE-2021-3298

CVE-2021-3298

Collabtive 3.1 allows XSS when an authenticated user enters an XSS payload into the address section of the profile edit page, aka the manageuser.php?action=edit address1 parameter.

Source: CVE-2021-3298

Exit mobile version