Cross-site scripting (XSS) vulnerability in BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote malicious users to inject arbitrary web script or HTML via the filename in a request to a (1) .cfm or (2) .cfml file, which reflects the result in the default error page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
new atlanta communications bluedragon server 6.2.1.286 |
||
new atlanta communications bluedragon server jx 6.2.1.286 |