CVE-2007-2381
The CVE-2007-2381 issue concerns the MochiKit framework. Affected component: MochiKit’s data exchange using JSON without an accompanying protection scheme. Root cause: data can be obtained by exploiting a page that fetches the JSON via a SCRIPT element’s SRC URL and related JavaScript, i.e., Java...