Some weaknesses and vulnerabilities have been reported in Zend Framework, which can be exploited by malicious people to conduct redirection and cross-site scripting attacks.
The weaknesses and vulnerabilities are caused due to the use of a vulnerable version of Dojo Toolkit.
Solution
Update to version 1.10.3 or 1.9.8 or later and redeploy Dojo.
Original Advisory
http://framework.zend.com/security/advisory/ZF2010-07
暂无评论