CVEs-PoC/2010/CVE-2010-2301.md

CVE-2010-2301

Description

Cross-site scripting (XSS) vulnerability in editing/markup.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to inject arbitrary web script or HTML via vectors related to the node.innerHTML property of a TEXTAREA element. NOTE: this might overlap CVE-2010-1762.

POC

Reference

• https://bugs.webkit.org/show_bug.cgi?id=38922

Github

No PoCs found on GitHub currently.