GCVE - cpe:2.3:a:hummingbird:enterprise_collaboration:5.2:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:hummingbird:enterprise_collaboration:5.2:*:*:*:*:*:*:*

part: a version: 5.2 update: *

Vendor	Hummingbird (`9b9391c7-dd85-5f18-9fb9-1cf068276ecb`)
Product	Enterprise Collaboration (`7962d11f-38d1-513a-85ce-1653ca0cd130`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2006-0174`	vulnerable	2026-06-03 14:27:15.376544	Details available Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to obtain sensitive information (intranet IP addresses and enumerations of valid parameter values) via a direct request to hc, which reveals the information in an error message or a cookie. Published: 2006-01-11T21:00:00.000Z Updated: 2024-08-07T16:25:34.079Z Open on db.gcve.eu Reference links http://www.vupen.com/english/advisories/2006/0145 http://www.securityfocus.com/bid/16195 https://exchange.xforce.ibmcloud.com/vulnerabilities/24069 http://securityreason.com/securityalert/328 http://secunia.com/advisories/18411	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-0173`	vulnerable	2026-06-03 14:27:15.374003	Details available Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to misrepresent the type and name of a file via modified doc_ext and id parameters, which might trick a user into downloading dangerous or unexpected content. Published: 2006-01-11T21:00:00.000Z Updated: 2024-08-07T16:25:33.798Z Open on db.gcve.eu Reference links http://www.vupen.com/english/advisories/2006/0145 http://www.securityfocus.com/bid/16195 http://secunia.com/advisories/18411 http://www.securenetwork.it/advisories/sn-2006-01.html http://www.securityfocus.com/archive/1/421392/100/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-0172`	vulnerable	2026-06-03 14:27:15.373588	Details available Cross-site scripting (XSS) vulnerability in the file manager utility in Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to inject arbitrary web script or HTML in an uploaded page, which is published without a check for hostile scripting. Published: 2006-01-11T21:00:00.000Z Updated: 2024-08-07T16:25:34.053Z Open on db.gcve.eu Reference links http://www.vupen.com/english/advisories/2006/0145 http://www.securityfocus.com/bid/16195 http://secunia.com/advisories/18411 https://exchange.xforce.ibmcloud.com/vulnerabilities/24067 http://www.securenetwork.it/advisories/sn-2006-01.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Hummingbird Hummingbird Enterprise Collaboration 5.2

PURL mappings

Vulnerability references

Contribute