Arbitrary HTML Injection Vulnerability in Sun ONE Application Server and Java System Application Server

Arbitrary HTML Injection Vulnerability in Sun ONE Application Server and Java System Application Server

CVE-2006-3225 · LOW Severity

AV:N/AC:H/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in Sun ONE Application Server 7 before Update 9, Java System Application Server 7 2004Q2 before Update 5, and Java System Application Server Enterprise Edition 8.1 2005 Q1 allows remote attackers to inject arbitrary HTML or web script via unknown vectors.

Learn more about our Web App Pen Testing.