CVE-2010-2479
CVSS 4.3 - MEDIUM
Description
Cross-site scripting (XSS) vulnerability in HTML Purifier before 4.1.1, as used in Mahara and other products, when the browser is Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected Products
50 of 127| Vendor | Product | Version |
|---|---|---|
| htmlpurifier | htmlpurifier |
All versions
|
| htmlpurifier | htmlpurifier |
All versions
|
| htmlpurifier | htmlpurifier |
All versions
|
| htmlpurifier | htmlpurifier |
1.0.0
|
| htmlpurifier | htmlpurifier |
1.0.0
|
| htmlpurifier | htmlpurifier |
1.0.1
|
| htmlpurifier | htmlpurifier |
1.1.0
|
| htmlpurifier | htmlpurifier |
1.1.1
|
| htmlpurifier | htmlpurifier |
1.1.2
|
| htmlpurifier | htmlpurifier |
1.2.0
|
| htmlpurifier | htmlpurifier |
1.3.0
|
| htmlpurifier | htmlpurifier |
1.3.1
|
| htmlpurifier | htmlpurifier |
1.3.2
|
| htmlpurifier | htmlpurifier |
1.4.0
|
| htmlpurifier | htmlpurifier |
1.4.0
|
| htmlpurifier | htmlpurifier |
1.4.1
|
| htmlpurifier | htmlpurifier |
1.4.1
|
| htmlpurifier | htmlpurifier |
1.5.0
|
| htmlpurifier | htmlpurifier |
1.5.0
|
| htmlpurifier | htmlpurifier |
1.6.0
|
| htmlpurifier | htmlpurifier |
1.6.0
|
| htmlpurifier | htmlpurifier |
1.6.1
|
| htmlpurifier | htmlpurifier |
1.6.1
|
| htmlpurifier | htmlpurifier |
2.0.0
|
| htmlpurifier | htmlpurifier |
2.0.0
|
| htmlpurifier | htmlpurifier |
2.0.1
|
| htmlpurifier | htmlpurifier |
2.0.1
|
| htmlpurifier | htmlpurifier |
2.1.0
|
| htmlpurifier | htmlpurifier |
2.1.0
|
| htmlpurifier | htmlpurifier |
2.1.0
|
| htmlpurifier | htmlpurifier |
2.1.0
|
| htmlpurifier | htmlpurifier |
2.1.0
|
| htmlpurifier | htmlpurifier |
2.1.0
|
| htmlpurifier | htmlpurifier |
2.1.1
|
| htmlpurifier | htmlpurifier |
2.1.1
|
| htmlpurifier | htmlpurifier |
2.1.1
|
| htmlpurifier | htmlpurifier |
2.1.1
|
| htmlpurifier | htmlpurifier |
2.1.1
|
| htmlpurifier | htmlpurifier |
2.1.1
|
| htmlpurifier | htmlpurifier |
2.1.2
|
| htmlpurifier | htmlpurifier |
2.1.2
|
| htmlpurifier | htmlpurifier |
2.1.2
|
| htmlpurifier | htmlpurifier |
2.1.2
|
| htmlpurifier | htmlpurifier |
2.1.2
|
| htmlpurifier | htmlpurifier |
2.1.2
|
| htmlpurifier | htmlpurifier |
2.1.3
|
| htmlpurifier | htmlpurifier |
2.1.3
|
| htmlpurifier | htmlpurifier |
2.1.3
|
| htmlpurifier | htmlpurifier |
2.1.3
|
| htmlpurifier | htmlpurifier |
2.1.3
|
Showing first 50 of 127 affected products.
References
Weakness Types
CWE-79
CVE Information
- CVE ID:
CVE-2010-2479- Published:
- 2010-07-06
- Modified:
- 2026-04-29
- CVSS Score:
- 4.3
- Severity:
- MEDIUM
- Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N
Affected Vendors
mahara
htmlpurifier
Quick Actions
CVSS Severity Scale
0.0 - 3.9
LOW
4.0 - 6.9
MEDIUM
7.0 - 8.9
HIGH
9.0 - 10.0
CRITICAL