CVE Vulnerabilities

CVE-2006-2311

Published: Jun 26, 2006 | Modified: Mar 08, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.6 LOW
AV:N/AC:H/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Cross-site scripting (XSS) vulnerability in BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to inject arbitrary web script or HTML via the filename in a request to a (1) .cfm or (2) .cfml file, which reflects the result in the default error page.

Affected Software

Name Vendor Start Version End Version
Bluedragon_server_jx New_atlanta_communications 6.2.1.286 6.2.1.286
Bluedragon_server New_atlanta_communications 6.2.1.286 6.2.1.286

References