VWE-2010-0077
Return to current revision
General Differences
made the following changes
- removed the title prefix 'XSS'
- changed the title from 'Replacement Corruption Vulnerability' to 'VWE-2010-0077'
Differences in Content
-
[template]Vulnerability
| cve=
| aka=Replacement Corruption Vulnerability
| severity=High
| difficulty=Hard
| description=HTML/Javascript injection. Does not affect Lite versions.
| discover-date=November 20, 2010
| patch-date=November 22, 2010
| patches=3.0.6
2.5.7 Patch Level 4
| workaround=Remove all URL replacements that paste the following characters " ' < > % /
[/template]