Unspecified vulnerability in Kolab Webclient before 1.2.0 in Kolab Server before 2.2.3 allows attackers to have an unspecified impact via vectors related to an "image upload form."
http://www.vupen.com/english/advisories/2010/1245
http://www.securityfocus.com/bid/37465
http://www.mandriva.com/security/advisories?name=MDVSA-2010:108
http://secunia.com/advisories/37918
http://files.kolab.org/server/release/kolab-server-2.2.3/sources/release-notes.txt