Unrated severityNVD Advisory· Published Aug 23, 2011· Updated Jun 16, 2026
CVE-2011-2650
CVE-2011-2650
Description
Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via a crafted pattern name that is included in an RPM info display.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- cpe:2.3:a:novell:suse_studio_onsite:1.1:*:*:*:*:*:*:*
- Range: <=1.1.3
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.