CVE-2006-5860 Information

Description

Cross-site scripting (XSS) vulnerability in the administrator console for Adobe JRun 4.0 as used in ColdFusion allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Reference

http://osvdb.org/32122 http://secunia.com/advisories/24093 http://www.adobe.com/support/security/bulletins/apsb07-05.html http://www.securityfocus.com/bid/22547 http://www.securitytracker.com/id?1017646 http://www.securitytracker.com/id?1017647 http://www.vupen.com/english/advisories/2007/0594 https://exchange.xforce.ibmcloud.com/vulnerabilities/32475