Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.6
CVSSv2

CVE-2006-1786

Published: 13/04/2006 Updated: 18/10/2018
CVSS v2 Base Score: 2.6 | Impact Score: 2.9 | Exploitability Score: 4.9
VMScore: 270
Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N
Subscribe to Adobe

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in Adobe Document Server for Reader Extensions 6.0 allows remote malicious users to inject arbitrary web script or HTML via (1) the actionID parameter in ads-readerext and (2) the op parameter in AlterCast. NOTE: it is not clear whether the vendor advisory addresses this issue.

Vulnerable Product Search on Vulmon Subscribe to Product

adobe document server 6.0

Exploits

Exploit DB: Adobe Document Server 6.0 Extensions - 'ads-readerext?actionID' Cross-Site Scripting
source: wwwsecurityfocuscom/bid/17500/info Adobe Document Server for Reader Extensions, included with Graphics Server and Document Server, is prone to multiple vulnerabilities that may allow remote attackers to: - perform cross-site scripting attacks - gain access to potentially sensitive information - bypass security restrictions to gai ...
Exploit DB: Adobe Document Server 6.0 Extensions - 'AlterCast?op' Cross-Site Scripting
source: wwwsecurityfocuscom/bid/17500/info Adobe Document Server for Reader Extensions, included with Graphics Server and Document Server, is prone to multiple vulnerabilities that may allow remote attackers to: - perform cross-site scripting attacks - gain access to potentially sensitive information - bypass security restrictions to g ...

References

NVD-CWE-Otherhttp://secunia.com/secunia_research/2005-68/advisory/http://www.adobe.com/support/techdocs/322699.htmlhttp://secunia.com/advisories/15924http://www.securityfocus.com/bid/17500http://www.osvdb.org/24590http://www.osvdb.org/24589http://www.vupen.com/english/advisories/2006/1342https://exchange.xforce.ibmcloud.com/vulnerabilities/25771http://www.securityfocus.com/archive/1/430869/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/27636/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
brute forceCVE-2024-24908open redirectCVE-2024-31497CVE-2023-45866CVE-2024-4135CVE-2024-25523cache poisoningCVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook