NVD

Id
13752  
Name
CVE-2010-2274  
Description
Multiple open redirect vulnerabilities in Dojo 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, possibly related to dojo/resources/iframe_history.html, dojox/av/FLAudio.js, dojox/av/FLVideo.js, dojox/av/resources/audio.swf, dojox/av/resources/video.swf, util/buildscripts/jslib/build.js, util/buildscripts/jslib/buildUtil.js, and util/doh/runner.html.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-18  
Published
2010-06-15  
Modified Date
2010-06-17  
Seq
2010-2274  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
76495 13752 CVE-2010-2274 http://dojotoolkit.org/blog/post/dylan/2010/03/dojo-security-advisory/  View
76496 13752 CVE-2010-2274 http://www-01.ibm.com/support/docview.wss?uid=swg21431472  View
76497 13752 CVE-2010-2274 LO50994  View
76498 13752 CVE-2010-2274 ADV-2010-1281  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
38358 JVNDB-2010-004143 Dojo におけるオープンリダイレクトの脆弱性 Dojo には、オープンリダイレクトの脆弱性が存在します。 CVE-2010-2274 44854 CVE-2010-2274 13752 4.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-004143.html 2010-06-15 2012-06-26 View