CVE-2010-4901

Multiple cross-site scripting (XSS) vulnerabilities in char_map.php in MySource Matrix 3.28.3 allow remote attackers to inject arbitrary web script or HTML via the (1) height or (2) width parameter.

Date published : 2011-10-08

http://www.securityfocus.com/bid/43020

http://www.packetstormsecurity.org/1009-advisories/ZSL-2010-4962.txt