Unspecified vulnerability in BlazeDS 3.2 and previous versions, as used in LiveCycle 8.0.1, 8.2.1, and 9.0, LiveCycle Data Services 2.5.1, 2.6.1, and 3.0, Flex Data Services 2.0.1, and ColdFusion 7.0.2, 8.0, 8.0.1, and 9.0, allows remote malicious users to obtain sensitive information via vectors that are associated with a request, and related to injected tags and external entity references in XML documents.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe lifecycle data services 3.0 |
||
adobe flex data services 2.0.1 |
||
adobe lifecycle data services 2.5.1 |
||
adobe lifecycle data services 2.6.1 |
||
adobe coldfusion 9.0 |
||
adobe lifecycle 8.2.1 |
||
adobe lifecycle 9.0 |
||
adobe coldfusion 8.0.1 |
||
adobe blazeds |
||
adobe lifecycle 8.0.1 |
||
adobe coldfusion 7.0.2 |
||
adobe coldfusion 8.0 |