Vulnerabilities > Adobe > Robohelp > 6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-15 | CVE-2022-23201 | Cross-site Scripting vulnerability in Adobe Robohelp Adobe RoboHelp versions 2020.0.7 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 6.1 |
| 2021-04-19 | CVE-2021-21070 | Uncontrolled Search Path Element vulnerability in Adobe Robohelp Adobe Robohelp version 2020.0.3 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. | 9.3 |
| 2017-12-01 | CVE-2017-3105 | Open Redirect vulnerability in Adobe Robohelp Adobe RoboHelp has an Open Redirect vulnerability. | 5.8 |
| 2017-12-01 | CVE-2017-3104 | Cross-site Scripting vulnerability in Adobe Robohelp Adobe RoboHelp has a cross-site scripting (XSS) vulnerability. | 4.3 |
| 2016-12-15 | CVE-2016-7891 | Cross-site Scripting vulnerability in Adobe Robohelp Adobe RoboHelp version 2015.0.3 and earlier, RoboHelp 11 and earlier have an input validation issue that could be used in cross-site scripting attacks. | 4.3 |
| 2009-02-26 | CVE-2009-0524 | Cross-Site Scripting vulnerability in Adobe Robohelp and Robohelp Server Cross-site scripting (XSS) vulnerability in Adobe RoboHelp 6 and 7, and RoboHelp Server 6 and 7, allows remote attackers to inject arbitrary web script or HTML via vectors involving files produced by RoboHelp. | 4.3 |
| 2009-02-26 | CVE-2009-0523 | Cross-Site Scripting vulnerability in Adobe Robohelp and Robohelp Server Cross-site scripting (XSS) vulnerability in Adobe RoboHelp Server 6 and 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, which is not properly handled when displaying the Help Errors log. | 4.3 |
| 2008-02-15 | CVE-2008-0642 | Cross-Site Scripting vulnerability in Adobe Robohelp 6/7 Cross-site scripting (XSS) vulnerability in files created by Adobe RoboHelp 6 and 7, possibly involving use of a (1) WebHelp5 (WebHelp5Ext) or (2) WildFire (WildFireExt) extension, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2007-1280. | 4.3 |
| 2007-05-10 | CVE-2007-1280 | Cross-Site Scripting vulnerability in Adobe Robohelp and Robohelp Server Cross-site scripting (XSS) vulnerability in Adobe RoboHelp X5, 6, and Server 6 allows remote attackers to inject arbitrary web script or HTML via a URL after a # (hash) in the URL path, as demonstrated using en/frameset-7.html, and possibly other unspecified vectors involving templates and (1) whstart.js and (2) whcsh_home.htm in WebHelp, (3) wf_startpage.js and (4) wf_startqs.htm in FlashHelp, or (5) WindowManager.dll in RoboHelp Server 6. | 4.3 |