Collabtive 3.1 allows XSS when an authenticated user enters an XSS payload into the address section of the profile edit page, aka the manageuser.php?action=edit address1 parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
o-dyn collabtive 3.1 |