Vulnerabilities

CVE-2006-5859

by Fred · 13/02/2007

Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 7.0 and 7.0.1, when Global Script Protection is not enabled, allows remote attackers to inject arbitrary HTML and web script via unknown vectors, possibly related to Linkdirect.cfm, Topnav.cfm, and Welcomedoc.cfm.

Date published : 2007-02-13

http://www.securityfocus.com/bid/22544

http://www.adobe.com/support/security/bulletins/apsb07-03.html

Similar

Tags: Cybersecurity Alert