← Volver a CVEs
CVE-2006-3225
N/ADescripcion
Cross-site scripting (XSS) vulnerability in Sun ONE Application Server 7 before Update 9, Java System Application Server 7 2004Q2 before Update 5, and Java System Application Server Enterprise Edition 8.1 2005 Q1 allows remote attackers to inject arbitrary HTML or web script via unknown vectors.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado6/26/2006
Ultima modificacion4/16/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
sun:java_system_application_serversun:one_application_server
Referencias
http://secunia.com/advisories/20835(cve@mitre.org)
http://securitytracker.com/id?1016378(cve@mitre.org)
http://www.securityfocus.com/bid/18635(cve@mitre.org)
http://www.vupen.com/english/advisories/2006/2508(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/27392(cve@mitre.org)
http://secunia.com/advisories/20835(af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1016378(af854a3a-2127-422b-91ae-364da2661108)
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102479-1(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/18635(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2006/2508(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/27392(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.