2 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in files created by Adobe RoboHelp 6 and 7, possibly involving use of a 1 WebHelp5 WebHelp5Ext or 2 WildFire WildFireExt extension, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than...
CVE-2007-1280
The CVE-2007-1280 entry describes an XSS vulnerability in Adobe RoboHelp X5, X6, and RoboHelp Server 6. The issue allows remote attackers to inject arbitrary script/HTML via a URL that includes a # (hash) in the path, demonstrated with en/frameset-7.html and potentially other vectors involving te...