Cross-site scripting (XSS) vulnerability in the tb-send.rb (TrackBack transmission) plugin in tDiary 2.2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors, possibly related to the (1) plugin_tb_url and (2) plugin_tb_excerpt parameters.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2010-03-02T19:00:00Z

Updated: 2024-09-16T17:49:13.687Z

Reserved: 2010-02-26T00:00:00Z

Link: CVE-2010-0726

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-03-02T19:30:00.290

Modified: 2024-11-21T01:12:50.260

Link: CVE-2010-0726

cve-icon Redhat

No data.