CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
Confidence
High
EPSS
Percentile
60.4%
Multiple cross-site scripting (XSS) vulnerabilities in Adobe RoboHelp 8 and 9 for Word allow remote attackers to inject arbitrary web script or HTML via a crafted URL, related to certain .htm files in (1) template_stock and (2) template_csh directories.
Vendor | Product | Version | CPE |
---|---|---|---|
adobe | robohelp | 8 | cpe:2.3:a:adobe:robohelp:8:*:*:*:*:*:*:* |
adobe | robohelp | 8.0.1 | cpe:2.3:a:adobe:robohelp:8.0.1:*:*:*:*:*:*:* |
adobe | robohelp | 8.0.2 | cpe:2.3:a:adobe:robohelp:8.0.2:*:*:*:*:*:*:* |
adobe | robohelp | 9 | cpe:2.3:a:adobe:robohelp:9:*:*:*:*:*:*:* |
adobe | robohelp | 9.0.0.228 | cpe:2.3:a:adobe:robohelp:9.0.0.228:*:*:*:*:*:*:* |
adobe | robohelp | 9.0.1 | cpe:2.3:a:adobe:robohelp:9.0.1:*:*:*:*:*:*:* |
adobe | robohelp | 9.0.1.232 | cpe:2.3:a:adobe:robohelp:9.0.1.232:*:*:*:*:*:*:* |
adobe | robohelp | 9.0.2 | cpe:2.3:a:adobe:robohelp:9.0.2:*:*:*:*:*:*:* |
microsoft | word | * | cpe:2.3:a:microsoft:word:*:*:*:*:*:*:*:* |
microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |