Security Advisory

CVE-2006-5859

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-02-14 01:00:00

Last updated 2024-08-07 20:04:55

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 7.0 and 7.0.1, when Global Script Protection is not enabled, allows remote attackers to inject arbitrary HTML and web script via unknown vectors, possibly related to Linkdirect.cfm, Topnav.cfm, and Welcomedoc.cfm.

← Browse all CVEs View on cve.org ↗