CVE-2009-4975 Information

Description

Cross-site scripting (XSS) vulnerability in webview.cpp in QtDemoBrowser allows remote attackers to inject arbitrary web script or HTML via a URL associated with a nonexistent domain name related to a \universal XSS\ issue a similar vulnerability to CVE-2010-2536.

Reference

http://bugreports.qt.nokia.com/browse/QTWEBKIT-22 https://bugs.kde.org/show_bug.cgi?id=217464 https://bugs.webkit.org/show_bug.cgi?id=32252 https://exchange.xforce.ibmcloud.com/vulnerabilities/60879