Medium severity6.1NVD Advisory· Published Jun 22, 2021· Updated Jun 16, 2026
CVE-2010-4264
CVE-2010-4264
Description
It was found in vanilla forums before 2.0.10 a cross-site scripting vulnerability where a filename could contain arbitrary code to execute on the client side.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <2.0.10
Patches
Vulnerability mechanics
References
2- github.com/vanilla/vanilla/commit/4535a059e4e24ca11a2ef0b4d754f262398bcecenvdPatchThird Party Advisory
- seclists.org/oss-sec/2010/q4/282nvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.