135 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in Adobe RoboHelp Server 6 and 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, which is not properly handled when displaying the Help Errors log...
CVE-2009-0524
CVE-2009-0524 affects Adobe RoboHelp 6 and 7, and RoboHelp Server 6 and 7. The connected sources describe multiple input validation errors in template_stock/whutils.js, Report_Template.asp, redirect.asp, and SQL_Lib.asp that enable cross-site scripting via URLs crafted from RoboHelp-produced file...
CVE-2009-0523
Adobe RoboHelp Server 6/7 are affected by multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary script via crafted URLs displayed in the Help Errors log. The issues stem from input validation errors in template_stock/whutils.js, Report_Template.asp, r...
CVE-2009-0523
Cross-site scripting XSS vulnerability in Adobe RoboHelp Server 6 and 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, which is not properly handled when displaying the Help Errors log...
RoboHelp Server Multiple XSS (APSB09-02 Update 2)
Adobe RoboHelp Server version 6 or 7 is installed on the remote host, and it is missing updates included with Adobe security advisory 'APSB09-02 Update 2' involving the files 'redirect.asp', 'ReportTemplate.asp' and 'SQLLib.asp'. Provided an attacker has access to 'RoboHelp Help Errors log' or is...
RoboHelp Server Help Errors Multiple Vulnerabilities (APSB08-16)
The installation of Adobe RoboHelp Server on the remote host is version 7.00 or older and does not contain the APSB08-16 update file. As a result, it is probably affected by a SQL injection and a cross-site scripting vulnerability. The SQL injection issue reportedly can be exploited to manipulate...
CVE-2008-2991
Cross-site scripting XSS vulnerability in Adobe RoboHelp Server 6 and 7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Help Errors log...
Cross site scripting
Cross-site scripting XSS vulnerability in Adobe RoboHelp Server 6 and 7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Help Errors log...
CVE-2008-2991
Cross-site scripting XSS vulnerability in Adobe RoboHelp Server 6 and 7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Help Errors log...
CVE-2008-2991
Cross-site scripting XSS vulnerability in Adobe RoboHelp Server 6 and 7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Help Errors log...
CVE-2008-2991
CVE-2008-2991 is an XSS vulnerability in Adobe RoboHelp Server 6 and 7 that allows remote attackers to inject arbitrary web script or HTML via the Help Errors log. Affected software: RoboHelp Server 6 and 7. Root cause: input handling in the Help Errors log leads to script execution. Impact: arbi...
PT-2008-4425 · Adobe · Robohelp Server
Name of the Vulnerable Software and Affected Versions: Adobe RoboHelp Server versions 6 and 7 Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML via vectors related to the Help Errors log. This could potentially lead to unauthorized action...
Cross-Site Scripting in Adobe RoboHelp 6, Server 6 and X5
Hi, I'd like to inform you about a XSS-vulnerability in Adobe RoboHelp 6, RoboHelp Server 6 and RoboHelp X5. See attached advisory below. I - TITLE Security advisory: Cross-Site Scripting in RoboHelp 6, RoboHelp Server 6 and RoboHelp X5 II - SUMMARY Description: A Cross-Site Scripting Flaw in...
Cross site scripting
Cross-site scripting XSS vulnerability in Adobe RoboHelp X5, 6, and Server 6 allows remote attackers to inject arbitrary web script or HTML via a URL after a hash in the URL path, as demonstrated using en/frameset-7.html, and possibly other unspecified vectors involving templates and 1 whstart.js...
PT-2007-2697 · Adobe · Robohelp +1
Name of the Vulnerable Software and Affected Versions: Adobe RoboHelp versions X5, 6 Adobe RoboHelp Server version 6 Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML via a URL after a hash in the URL path. This can be demonstrated using...