Cross-site scripting (XSS) vulnerability in Adobe RoboHelp 6 and 7, and RoboHelp Server 6 and 7, allows remote attackers to inject arbitrary web script or HTML via vectors involving files produced by RoboHelp.
References
Link | Resource |
---|---|
http://secunia.com/advisories/34032 | Vendor Advisory |
http://secunia.com/advisories/34048 | Vendor Advisory |
http://www.securityfocus.com/bid/33888 | Patch |
http://www.adobe.com/support/security/bulletins/apsb09-02.html | Patch Vendor Advisory |
http://www.vupen.com/english/advisories/2009/0512 | Vendor Advisory |
http://securitytracker.com/id?1021755 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/48889 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2009-02-26 08:17
Updated : 2017-08-07 18:33
NVD link : CVE-2009-0524
Mitre link : CVE-2009-0524
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
adobe
- robohelp_server
- robohelp