CVE-2009-2172

2009-06-2321:21:00

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.5%

JSON

Cross-site scripting (XSS) vulnerability in forum/radioandtv.php in the Radio and TV Player addon for vBulletin allows remote registered users to inject arbitrary web script or HTML via the station parameter.

References

www.securityfocus.com/bid/35385

www.exploit-db.com/exploits/8965