CVE-2008-6947
Collabtive 0.4.8 - Unauthenticated Authentication Bypass and Privilege Escalation via Admin User Creation
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2008-6947. PoCs published by USH.
AI-analyzed exploit summary This is a detailed technical writeup describing multiple vulnerabilities in Collabtive 0.4.8, including stored XSS, authentication bypass, and arbitrary file upload. It provides root cause analysis, exploitation steps, and technical details without functional exploit code.
Description
Collabtive 0.4.8 allows remote attackers to bypass authentication and create new users, including administrators, via unspecified vectors associated with the added mode in a users action to admin.php.
Exploits (1)
This is a detailed technical writeup describing multiple vulnerabilities in Collabtive 0.4.8, including stored XSS, authentication bypass, and arbitrary file upload. It provides root cause analysis, exploitation steps, and technical details without functional exploit code.