CVE-2010-4901 – MySource Matrix - 'char_map.php' Multiple Cross-Site Scripting Vulnerabilities
https://notcve.org/view.php?id=CVE-2010-4901
Multiple cross-site scripting (XSS) vulnerabilities in char_map.php in MySource Matrix 3.28.3 allow remote attackers to inject arbitrary web script or HTML via the (1) height or (2) width parameter. Varias vulnerabilidades de cross-site scripting (XSS) en char_map.php en MySource Matrix v3.28.3 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de los parámetros (1) altura o (2) anchura. • https://www.exploit-db.com/exploits/34609 http://osvdb.org/67838 http://secunia.com/advisories/41295 http://securityreason.com/securityalert/8439 http://www.packetstormsecurity.org/1009-advisories/ZSL-2010-4962.txt http://www.securityfocus.com/bid/43020 http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4962.php • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •