Index
Bugtraq
Pełna lista
Błędy
Sztuczki
Exploity
Dorks list
Tylko z CVE
Tylko z CWE
Bogus
Ranking
CVEMAP
Świeża lista CVE
Producenci
Produkty
Słownik CWE
Sprawdź nr. CVE
Sprawdź nr. CWE
Szukaj
W Bugtraq
W bazie CVE
Po autorze
Po nr. CVE
Po nr. CWE
Po producencie
Po produkcie
RSS
Bugtraq
CVEMAP
CVE Produkty
Tylko Błędy
Tylko Exploity
Tylko Dorks
Więcej
cIFrex
Facebook
Twitter
Donate
O bazie
Lang
Polish
English
Submit
Podatności dla
'Coldfusion fusebox'
2005-08-05
CVE-2005-2481
ColdFusion Fusebox 4.1.0 allows remote attackers to obtain sensitive information via an invalid fuseaction parameter, which leaks the full server path in an error message, as demonstrated using the "?" (question mark) character.
CVE-2005-2480
Cross-site scripting (XSS) vulnerability in ColdFusion Fusebox 4.1.0 allows remote attackers to inject arbitrary web script or HTML via the fuseaction parameter, which is not quoted in an error page, as demonstrated using index.cfm.
>>>
Vendor:
Macromedia
19
Produkty
Coldfusion server
Coldfusion
Dreamweaver
Matrix screen saver
Shockwave flash plugin
Studio
JRUN
Flash
Flash player
Shockwave flash
Sitespring
Shockwave
Coldfusion professional
Director
Contribute
Coldfusion fusebox
Breeze
Flash communication server
Flash media server
Copyright
2024
, cxsecurity.com
Back to Top
Podatności dla 'Coldfusion fusebox' 
Polish
English