3 matches found
Adobe LiveCycle Workflow管理登录页面跨站脚本漏洞
BUGTRAQ ID: 28209 CVECAN ID: CVE-2008-1202 Adobe LiveCycle Workflow是一个全面的流程管理解决方案,用于帮助企业简化、整合和保护以文档为中心的流程。 LiveCycle Workflow没有正确地过滤对Web管理登录页面的输入便返回给了用户,这可能导致跨站脚本攻击,允许在用户浏览器会话中注入并执行任意HTML和脚本代码。 Adobe LiveCycle Workflow 6.2 Adobe ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2008-1202
Cross-site scripting XSS vulnerability in the web management interface in Adobe LiveCycle Workflow 6.2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...
CVE-2008-1202
The CVE-2008-1202 case concerns Adobe LiveCycle Workflow 6.2, where the Web Management Login Page fails to properly sanitize input, enabling cross-site scripting (XSS) via unknown vectors. This vulnerability could allow an attacker to inject arbitrary HTML/script into a user’s browser session on ...