| Max CVSS | 2.6 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1785 | 2.1 |
Adobe Document Server for Reader Extensions 6.0 allows remote authenticated users to inject arbitrary web script via a leading (1) ftp or (2) http URI in the ReaderURL variable in the "Update Download Site" section of ads-readerext. NOTE: it is not
|
18-10-2018 - 16:36 | 13-04-2006 - 22:02 | |
| CVE-2006-1787 | 2.6 |
Adobe Document Server for Reader Extensions 6.0 includes a user's session (jsession) ID in the HTTP Referer header, which allows remote attackers to gain access to PDF files that are being processed within that session.
|
18-10-2018 - 16:36 | 13-04-2006 - 22:02 | |
| CVE-2006-1786 | 2.6 |
Cross-site scripting (XSS) vulnerability in Adobe Document Server for Reader Extensions 6.0 allows remote attackers to inject arbitrary web script or HTML via (1) the actionID parameter in ads-readerext and (2) the op parameter in AlterCast. NOTE: it
|
18-10-2018 - 16:36 | 13-04-2006 - 22:02 |