Skip to main content

Activecollab Chat Module

1 CVEs product

Monthly

CVE-2012-6554 MEDIUM POC THREAT This Month

functions/html_to_text.php in the Chat module before 1.5.2 for activeCollab allows remote authenticated users to execute arbitrary PHP code via the message[message_text] parameter to chat/add_messag,. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 62.7%.

PHP RCE Activecollab Chat Module
NVD Exploit-DB
CVSS 2.0
6.5
EPSS
62.7%
Threat
4.7
EPSS 63% 4.7 CVSS 6.5
MEDIUM POC THREAT This Month

functions/html_to_text.php in the Chat module before 1.5.2 for activeCollab allows remote authenticated users to execute arbitrary PHP code via the message[message_text] parameter to chat/add_messag,. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 62.7%.

PHP RCE Activecollab Chat Module
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy