CVE-2010-2281

Name of the Vulnerable Software and Affected Versions TomatoCMS version 2.0.6

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via specific parameters, including the keyword or bannerid parameter in conjunction with the "/admin/ad/banner/list" PATH INFO. Additionally, remote authenticated users with certain privileges can inject arbitrary web script or HTML via the title or answers parameter with a "/admin/poll/add" PATH INFO, or the name parameter with a "/admin/category/add" PATH INFO.

Recommendations For TomatoCMS version 2.0.6, consider disabling the vulnerable parameters keyword, bannerid, title, answers, and name in their respective API endpoints until a patch is available. Restrict access to the "/admin/ad/banner/list", "/admin/poll/add", and "/admin/category/add" PATH INFO to minimize the risk of exploitation. Avoid using these parameters in the affected API endpoints until the issue is resolved.