Activecollab: >> Activecollab >> 1.0.6 Security Vulnerabilities
ActiveCollab before 2.3.2 allows remote authenticated users to bypass intended access restrictions, and (1) delete an attachment or (2) subscribe to an object, via a crafted URL.
CVSS Score
6.0
EPSS Score
0.001
Published
2011-01-07