CVE-2009-0107

2009-01-09T13:30:03
ID CVE-2009-0107
Type cve
Reporter NVD
Modified 2017-10-18T21:30:16

Description

Cross-site scripting (XSS) vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attackers to inject arbitrary web script or HTML via the user_id parameter.