Oval Definition:	oval:org.opensuse.security:def:20102480
Revision Date: 2015-11-16 Version: 1 Title: CVE-2010-2480 Description: Mako before 0.3.4 relies on the cgi.escape function in the Python standard library for cross-site scripting (XSS) protection, which makes it easier for remote attackers to conduct XSS attacks via vectors involving single-quote characters and a JavaScript onLoad event handler for a BODY element. Family: unix Class: vulnerability Status: Reference(s): CVE-2010-2480 Platform(s): openSUSE 11.2 openSUSE 11.3 Product(s): Definition Synopsis Release Information suse112 is installed AND python-mako less than 0.2.4-2.2.1 OR Package Information suse113 is installed AND python-mako less than 0.2.5-4.2.1
BACK