2 matches found
CVE-2009-1688
Cross-site scripting XSS vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to determining a security context through an approach that is...
CVE-2009-1688
CVE-2009-1688 is a WebKit-based XSS vulnerability affecting Apple Safari up to version 4.0 (and iPhone OS 1.0–2.2.1, iPod touch 1.1–2.2.1). The issue arises from WebKit not using the HTML5 standard method to determine the security context, enabling remote attackers to inject arbitrary script or H...