EUVD-2008-1211

Malware in sbrugna...

Adobe LiveCycle Workflow管理登录页面跨站脚本漏洞

BUGTRAQ ID: 28209 CVECAN ID: CVE-2008-1202 Adobe LiveCycle Workflow是一个全面的流程管理解决方案，用于帮助企业简化、整合和保护以文档为中心的流程。 LiveCycle Workflow没有正确地过滤对Web管理登录页面的输入便返回给了用户，这可能导致跨站脚本攻击，允许在用户浏览器会话中注入并执行任意HTML和脚本代码。 Adobe LiveCycle Workflow 6.2 Adobe ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Cross site scripting

Cross-site scripting XSS vulnerability in the web management interface in Adobe LiveCycle Workflow 6.2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

CVE-2008-1202

Cross-site scripting XSS vulnerability in the web management interface in Adobe LiveCycle Workflow 6.2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

Advisory Adobe LiveCycle Workflow XSS Vulnerability

Summary Name: Adobe LiveCycle Workflow XSS Vulnerability Release Date: 11 March 2008 Reference: LSD002-2008 CVE Number: CVE-2008-1202 Discover: Dave Lewis Vendor: Adobe Systems Product: LiveCycle Workflow 6.2 Management Web Interface Systems Affected: version 6.2 as tested NB. Other versions may ...

CVE-2008-1202

Cross-site scripting XSS vulnerability in the web management interface in Adobe LiveCycle Workflow 6.2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

CVE-2008-1202

The CVE-2008-1202 case concerns Adobe LiveCycle Workflow 6.2, where the Web Management Login Page fails to properly sanitize input, enabling cross-site scripting (XSS) via unknown vectors. This vulnerability could allow an attacker to inject arbitrary HTML/script into a user’s browser session on ...