Arbitrary Script Injection in Adobe Connect Web App

Arbitrary Script Injection in Adobe Connect Web App

CVE-2015-0343 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in admin/home/homepage/search in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via the query parameter.

Learn more about our Web App Pen Testing.