CVE-2006-5859
N/A
N/A
Summary
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 7.0 and 7.0.1, when Global Script Protection is not enabled, allows remote attackers to inject arbitrary HTML and web script via unknown vectors, possibly related to Linkdirect.cfm, Topnav.cfm, and Welcomedoc.cfm.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.adobe.com/support/security/bulletins/apsb07-03.html
- http://secunia.com/advisories/24115
- http://osvdb.org/32121
- http://www.securitytracker.com/id?1017644
- http://www.securityfocus.com/bid/22544
- http://www.vupen.com/english/advisories/2007/0592
References
- http://www.adobe.com/support/security/bulletins/apsb07-03.html
- http://secunia.com/advisories/24115
- http://osvdb.org/32121
- http://www.securitytracker.com/id?1017644
- http://www.securityfocus.com/bid/22544
- http://www.vupen.com/english/advisories/2007/0592
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.