Lucene search
MitreCVELIST:CVE-2009-1408HistoryApr 24, 2009 - 2:00 p.m.
CVE-2009-1408
2009-04-2414:00:00
mitre
www.cve.org
Cross-site scripting (XSS) vulnerability in webSPELL 4.2.0c allows remote attackers to inject arbitrary web script or HTML allows remote attackers to inject arbitrary web script or HTML via Javascript events such as onmouseover in nested BBcode tags, as demonstrated using (1) email, (2) img, and (3) url tags.
References
osvdb.org/53782
secunia.com/advisories/34764
www.securityfocus.com/archive/1/502732/100/0/threaded
www.securityfocus.com/bid/34595
www.webspell.org/index.php?site=files&file=25
www.webspell.org/index.php?site=news_comments&newsID=126&lang=uk
exchange.xforce.ibmcloud.com/vulnerabilities/49937
www.exploit-db.com/exploits/8453
Related
cve
cve
CVE-2009-1408
2009-04-24 14:30:00
nvd
nvd
CVE-2009-1408
2009-04-24 14:30:00
prion
prion
Cross site scripting
2009-04-24 14:30:00