Podatność CVE-2010-2479

Podatność CVE-2010-2479

Publikacja: 2010-07-06 Modyfikacja: 2012-02-13

Opis:

Typ:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

Ogólna skala CVSS	Znaczenie	Łatwość wykorzystania
4.3/10	2.9/10	8.6/10

Affected software
Mahara -> Mahara
Htmlpurifier -> Htmlpurifier

http://www.securityfocus.com/bid/41259

http://htmlpurifier.org/news/2010/0531-4.1.1-released

http://wiki.mahara.org/Release_Notes/1.2.5

http://wiki.mahara.org/Release_Notes/1.1.9

http://wiki.mahara.org/Release_Notes/1.0.15

http://secunia.com/advisories/40431

http://secunia.com/advisories/39613

http://repo.or.cz/w/htmlpurifier.git/commitdiff/18e538317a877a0509ae71a860429c41770da230