Security Advisory

CVE-2010-2671

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-07-08 22:00:00

Last updated 2024-09-16 22:25:42

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in advancedsearch.php in eZ Publish 3.7.0 through 4.2.0 allows remote attackers to inject arbitrary web script or HTML via the subTreeItem parameter.

← Browse all CVEs View on cve.org ↗