Vulnerability in Macromedia Coldfusion
CVE-2006-2364
Cross-site scripting (XSS) vulnerability in the validation feature in Macromedia ColdFusion 5 and earlier allows remote attackers to inject arbitrary web script or HTML via a "_required" field when the associated normal field is missing or…
EPSS: 0.013 (66.3th percentile) — read the EPSS interpretation.
Affected products
- Macromedia Coldfusion — versions 5.0
- N/a — versions n/a
References
- cve@mitre.org (mailing-list, Exploit, x_refsource_BUGTRAQ)
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (x_refsource_SREASON, third-party-advisory)