Unrated severityNVD Advisory· Published Feb 5, 2009· Updated Jun 16, 2026
CVE-2008-6062
CVE-2008-6062
Description
Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) files created by Adobe Dreamweaver, when the Insert Flash Video feature is used, allows remote attackers to inject arbitrary web script or HTML via an asfunction: URI in the skinName parameter. NOTE: this may overlap CVE-2007-6242, CVE-2007-6244, or CVE-2007-6637.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:adobe:dreamweaver:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:adobe:dreamweaver:*:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
4- www.adobe.com/support/security/bulletins/apsb07-20.htmlnvdPatchVendor Advisory
- www.kb.cert.org/vuls/id/249337nvdUS Government Resource
- docs.google.com/Viewnvd
- www.securityfocus.com/archive/1/485722/100/100/threadednvd
News mentions
0No linked articles in our index yet.