Vulnerability CVE-2010-2273

Vulnerability CVE-2010-2273

Published: 2010-06-15 Modified: 2012-02-13

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Dojotoolkit -> DOJO

http://dojotoolkit.org/blog/post/dylan/2010/03/dojo-security-advisory/

http://www.vupen.com/english/advisories/2010/1281

http://www.gdssecurity.com/l/b/2010/03/12/multiple-dom-based-xss-in-dojo-toolkit-sdk/

http://www-1.ibm.com/support/docview.wss?uid=swg1LO50994

http://www-01.ibm.com/support/docview.wss?uid=swg21431472

http://secunia.com/advisories/40007

http://secunia.com/advisories/38964

http://bugs.dojotoolkit.org/ticket/10773