CVE-2012-1597

2012-08-17T00:55:00
ID CVE-2012-1597
Type cve
Reporter cve@mitre.org
Modified 2012-08-17T04:00:00

Description

Cross-site scripting (XSS) vulnerability in the textEncode function in classes/ezjscajaxcontent.php in eZ JS Core in eZ Publish before 1.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.