Hummingbird Enterprise Collaboration vulnerabilities
3 known vulnerabilities affecting hummingbird/enterprise_collaboration.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2LOW1
Vulnerabilities
Page 1 of 1
CVE-2006-0173P4MEDIUMCVSS 4.0PoC≤ 5.21v5.22006-01-11
CVE-2006-0173 [MEDIUM] CVE-2006-0173: Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote
Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to misrepresent the type and name of a file via modified doc_ext and id parameters, which might trick a user into downloading dangerous or unexpected content.
nvd
CVE-2006-0174P4MEDIUMCVSS 4.0PoC≤ 5.21v5.22006-01-11
CVE-2006-0174 [MEDIUM] CVE-2006-0174: Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote
Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to obtain sensitive information (intranet IP addresses and enumerations of valid parameter values) via a direct request to hc, which reveals the information in an error message or a cookie.
nvd
CVE-2006-0172P4LOWCVSS 3.5≤ 5.21v5.22006-01-11
CVE-2006-0172 [LOW] CVE-2006-0172: Cross-site scripting (XSS) vulnerability in the file manager utility in Hummingbird Collaboration (a
Cross-site scripting (XSS) vulnerability in the file manager utility in Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to inject arbitrary web script or HTML in an uploaded page, which is published without a check for hostile scripting.
nvd