Browse all 5 CVE security advisories affecting colabrio. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Colabrio provides unified communication and collaboration platforms, primarily serving enterprise video conferencing and digital workspace needs. Historically, its vulnerabilities have commonly included remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and access control weaknesses. The platform has faced multiple security incidents, with CVE records revealing authentication bypasses and insecure default configurations that could lead to unauthorized system access. While no major public breaches have been widely documented, the consistent pattern of authentication and input-related vulnerabilities suggests potential attack surfaces for threat targeting enterprise communications infrastructure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-64365 | WordPress Ohio Extra plugin <= 3.6.0 - Cross Site Scripting (XSS) vulnerability — Ohio ExtraCWE-79 | 6.5 | Medium | 2025-10-31 |
| CVE-2025-26924 | WordPress Ohio Theme Extra plugin <= 3.4.7 - Shortcode Injection vulnerability — Ohio ExtraCWE-94 | 6.5 | Medium | 2025-03-15 |
This page lists every published CVE security advisory associated with colabrio. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.