Cross-site scripting (XSS) vulnerability in Adobe Document Server for Reader Extensions 6.0 allows remote malicious users to inject arbitrary web script or HTML via (1) the actionID parameter in ads-readerext and (2) the op parameter in AlterCast. NOTE: it is not clear whether the vendor advisory addresses this issue.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe document server 6.0 |