Uzbl · Uzbl · CVE-2010-0011
**Name of the Vulnerable Software and Affected Versions**
Uzbl versions prior to 2010.01.05
**Description**
The issue concerns the eval js function in uzbl-core.c, which exposes the run method of the Uzbl object. This allows remote attackers to execute arbitrary commands via JavaScript code.
**Recommendations**
For versions prior to 2010.01.05, update to version 2010.01.05 or later to resolve the issue.