CVE-2009-4460

2009-12-30T20:00:00
ID CVE-2009-4460
Type cve
Reporter cve@mitre.org
Modified 2010-01-06T05:00:00

Description

Multiple cross-site scripting (XSS) vulnerabilities in Auto-Surf Traffic Exchange Script 1.1 allow remote attackers to inject arbitrary web script or HTML via the rid parameter to (1) index.php, (2) faq.php, and (3) register.php.