Cross-site scripting (XSS) vulnerability in the tb-send.rb (TrackBack transmission) plugin in tDiary 2.2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors, possibly related to the (1) plugin_tb_url and (2) plugin_tb_excerpt parameters.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2010-03-02T19:00:00Z
Updated: 2024-09-16T17:49:13.687Z
Reserved: 2010-02-26T00:00:00Z
Link: CVE-2010-0726
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-03-02T19:30:00.290
Modified: 2024-11-21T01:12:50.260
Link: CVE-2010-0726
Redhat
No data.