NuytsTech Security

CVE-2010-4524

by ·

Cross-site scripting (XSS) vulnerability in lib/mhtxthtml.pl in MHonArc 2.6.16 allows remote attackers to inject arbitrary web script or HTML via a malformed start tag and end tag for a SCRIPT element, as demonstrated by ipt> and ipt> sequences.

Date published : 2011-01-03

http://www.securityfocus.com/bid/45528

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=607693

Tags: