Unrated severityNVD Advisory· Published Feb 24, 2010· Updated Jun 16, 2026
CVE-2010-0640
CVE-2010-0640
Description
Cross-site scripting (XSS) vulnerability in CA eHealth Performance Manager 6.0.x through 6.2.x, when malicious HTML detection is disabled, allows remote attackers to inject arbitrary web script or HTML via a crafted request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:ca:ehealth_performance_manager:6.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ca:ehealth_performance_manager:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:ca:ehealth_performance_manager:6.1:*:*:*:*:*:*:*
- cpe:2.3:a:ca:ehealth_performance_manager:6.2:*:*:*:*:*:*:*
- (no CPE)range: 6.0.x - 6.2.x
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.