1
Candidate: CVE-2010-2275
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2275
6
Cross-site scripting (XSS) vulnerability in dijit/tests/_testCommon.js in
7
Dojo Toolkit SDK before 1.4.2 allows remote attackers to inject arbitrary
8
web script or HTML via the theme parameter, as demonstrated by an attack
9
against dijit/tests/form/test_Button.html.
18
upstream_dojo: released (1.4.2)
23
lucid_dojo: not-affected
24
devel_dojo: not-affected