High-Tech Bridge SA Security Research Lab has discovered vulnerability in Collabtive version 1.0, which can be exploited to gain complete control over the application. The vulnerability exists due to improper access restrictions to the third installation step after successfully installing the application. A remote attacker can send a specially crafted HTTP POST request to the "install.php" script and create a new user with administrative privileges. The installation script is not deleted after application installation and is publicly available by default. You can update to Collabtive 1.1 to fix this vulnerability.
No comments:
Post a Comment