CVE-2010-1273
Emweb Wt < 3.1.1 - Improper Input Validation in UTF-8 Encoding
Title source: llmDescription
Emweb Wt before 3.1.1 does not validate the UTF-8 encoding of (1) form values and (2) JSignal arguments, which has unspecified impact and remote attack vectors.
References (4)
Core 4
Core References
Patch x_refsource_confirm
http://www.webtoolkit.eu/wt/doc/reference/html/Releasenotes.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/62717
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/38759
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/38541
Scores
EPSS
0.0127
EPSS Percentile
66.4%
Details
CWE
CWE-20
Status
published
Products (27)
emweb/wt
1.1.4
emweb/wt
1.1.5
emweb/wt
1.1.6
emweb/wt
1.1.7
emweb/wt
2.0.0
emweb/wt
2.0.1
emweb/wt
2.0.4
emweb/wt
2.0.4a
emweb/wt
2.0.5
emweb/wt
2.1.0
... and 17 more
Published
Apr 06, 2010
Tracked Since
Feb 18, 2026