Main Vulnerability Database Exploits ID:11391 - Exploit for Cross-site scripting in dojo - CVE-2010-2273

ID:11391 - Exploit for Cross-site scripting in dojo - CVE-2010-2273

Published: May 13, 2025

Vulnerability identifier: #VU109011

Vulnerability risk: Medium

CVE-ID: CVE-2010-2273

CWE-ID: CWE-79

Exploitation vector: Remote access

Vulnerable software:
dojo

Link to public exploit:

https://www.exploit-db.com/exploits/33765/

Vulnerability description

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data. A remote attacker can inject arbitrary web script or HTML via unspecified vectors, possibly related to dojo/resources/iframe_history.html, dojox/av/FLAudio.js, dojox/av/FLVideo.js, dojox/av/resources/audio.swf, dojox/av/resources/video.swf, util/buildscripts/jslib/build.js, and util/buildscripts/jslib/buildUtil.j.

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability..

ID:11391 - Exploit for Cross-site scripting in dojo - CVE-2010-2273

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human