CVE-2012-1597

Publication date

2012-08-17 00:00:00

Family

redhat

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the textEncode function in classes/ezjscajaxcontent.php in eZ JS Core in eZ Publish before 1.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.