[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Cross-site scripting vulnerability in RDS in Adobe ColdFusion

ID: oval:org.secpod.oval:def:9456Date: (C)2013-03-01   (M)2022-10-10
Class: VULNERABILITYFamily: unix




The host is installed with Adobe ColdFusion 8.0, 8.0.1, 9.0, 9.0.1 and is prone to cross-site scripting vulnerability. A flaw is present in the RDS components in the application, which fails to properly handle the vectors. Successful exploitation allows remote attackers to inject arbitrary web script or HTML.

Platform:
Linux
Product:
Adobe ColdFusion
Reference:
CVE-2011-4368
CVE    1
CVE-2011-4368
CPE    7
cpe:/a:adobe:coldfusion
cpe:/a:adobe:coldfusion:9.0.0.0
cpe:/a:adobe:coldfusion:9.0
cpe:/a:adobe:coldfusion:9.0.1
...

© SecPod Technologies