Macromedia : Security Vulnerabilities, CVEs, Published In 2005 (XSS) CVSS score >= 2
Cross-site scripting (XSS) vulnerability in ColdFusion Fusebox 4.1.0 allows remote attackers to inject arbitrary web script or HTML via the fuseaction parameter, which is not quoted in an error page, as demonstrated using index.cfm.
Max CVSS
4.3
EPSS Score
0.27%
Published
2005-08-05
Updated
2017-07-11
Cross-site scripting (XSS) vulnerability in the JRun Web Server in ColdFusion MX 7.0 allows remote attackers to inject arbitrary script or HTML via the URL, which is not properly quoted in the resulting default 404 error page.
Max CVSS
4.3
EPSS Score
0.23%
Published
2005-05-10
Updated
2017-07-11
2 vulnerabilities found