Cross-Site Scripting Vulnerabilities in Adobe RoboHelp Products
CVE-2010-2886

Currently unrated

Key Information:

Vendor: Adobe
Status: Robohelp; Robohelp Server
Vendor: CVE Published:; 26 October 2010

What is CVE-2010-2886?

Adobe RoboHelp versions 7 and 8, along with RoboHelp Server versions 7 and 8, are susceptible to multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web scripts or HTML through unspecified vectors, potentially compromising the integrity of the application's functionality and security. Attackers can exploit these weaknesses to execute malicious scripts in the context of a user's session, endangering sensitive user information and system integrity.

References

http://www.vupen.com/english/advisories/2010/2718

vdb-entryx_refsource_VUPEN

http://secunia.com/advisories/41870

third-party-advisoryx_refsource_SECUNIA

http://www.adobe.com/support/security/bulletins/apsb10-23...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Oct 26, 2010