📦

enterprise_collaboration

Vendor: hummingbird

Actively Exploited 0 CISA KEV List

PoC / Exploits 2 Code Available

Total RCEs 0 Remote Access

Total CVEs 3 Total Indexed

Avg. EPSS 4.11% Exploit Prob.

Latest CVE CVE-2006-0172 Jan 11

Security Vulnerability Index

Page 1 / 1

3.5 CVSS

CVE-2006-0172

Cross-site scripting (XSS) vulnerability in the file manager utility in Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to inject arbitrary web script or HTML in an uploaded page, which is published without a check for hostile scripting.

EPSS: 0.47%

Severity: LOW

Jan 11, 2006

4.0 CVSS

CVE-2006-0173

Exploit Found

Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to misrepresent the type and name of a file via modified doc_ext and id parameters, which might trick a user into downloading dangerous or unexpected content.

EPSS: 5.13%

Severity: MEDIUM

Jan 11, 2006

4.0 CVSS

CVE-2006-0174

Exploit Found

Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to obtain sensitive information (intranet IP addresses and enumerations of valid parameter values) via a direct request to hc, which reveals the information in an error message or a cookie.

EPSS: 6.71%

Severity: MEDIUM

Jan 11, 2006

Displaying 3 of 3 Total Entries

Total 1 Sections