CVE-2009-2114

2009-06-18T21:30:00
ID CVE-2009-2114
Type cve
Reporter cve@mitre.org
Modified 2018-10-10T19:39:00

Description

Multiple cross-site scripting (XSS) vulnerabilities in admin.php in SkyBlueCanvas 1.1 r237 allow remote attackers to inject arbitrary web script or HTML via the (1) mgroup, (2) mgr, (3) objtype, (4) id, and (5) dir parameters.