Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in the Flex 3 History Management feature in Adobe Flex 3.0.1 SDK and Flex Builder 3, and generated applications, allow remote attackers to inject arbitrary web script or HTML via the anchor identifier to (1) client-side-detection-with-history/history/historyFrame.html, (2) express-installation-with-history/history/historyFrame.html, or (3) no-player-detection-with-history/history/historyFrame.html in templates/html-templates/. NOTE: Firefox 2.0 and possibly other browsers prevent exploitation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Adobe Flex 3 历史管理historyFrame.html跨站脚本漏洞
Vulnerability Description
Adobe Flex 3是用于构建和维护Web应用程序的高效开放源码框架。 Flex 3的历史管理功能所使用的historyFrame.html页面没有正确地过滤某些用户输入便返回给了用户,这允许远程攻击者通过提交恶意请求执行跨站脚本攻击,导致在用户浏览器会话中执行任意HTML和脚本代码。
CVSS Information
N/A
Vulnerability Type
N/A