Cross-site scripting (XSS) vulnerability in index.template.html in the express-install templates in the SDK in Adobe Flex prior to 3.4, when the installed Flash version is older than a specified requiredMajorVersion value, allows remote malicious users to inject arbitrary web script or HTML via the query string.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe flex sdk |