CVE-2010-4524

Name of the Vulnerable Software and Affected Versions MHonArc version 2.6.16

Description The issue is related to a cross-site scripting (XSS) vulnerability. It allows remote attackers to inject arbitrary web script or HTML via a malformed start tag and end tag for a SCRIPT element. This can be achieved with sequences such as <scr<body>ipt> and </scr<body>ipt>.

Recommendations For MHonArc version 2.6.16, consider updating to a newer version that addresses this issue, as no specific fix is provided for this version. As a temporary workaround, restrict the use of the lib/mhtxthtml.pl script to minimize the risk of exploitation.