CVE-2010-2301

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 5.0.375.70

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is related to the node.innerHTML property of a TEXTAREA element.

Recommendations For versions prior to 5.0.375.70, update to version 5.0.375.70 or later to resolve the issue. As a temporary workaround, consider restricting the use of the node.innerHTML property for TEXTAREA elements until a patch is applied.