CVE-2009-3506

2009-10-01T14:30:00
ID CVE-2009-3506
Type cve
Reporter cve@mitre.org
Modified 2017-09-19T01:29:00

Description

Multiple cross-site scripting (XSS) vulnerabilities in CMSphp 0.21 allow remote attackers to inject arbitrary web script or HTML via the (1) cook_user parameter to index.php and the (2) name parameter to modules.php.