CVE-2009-2442

2022-10-0316:24:07

mitre

www.cve.org

cross-site scripting

linea21

remote attackers

web script

html

search parameter

5.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.6%

JSON

Cross-site scripting (XSS) vulnerability in public/index.php in Linea21 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the search parameter in a resultats-recherche action.

References

secunia.com/advisories/35745

www.packetstormsecurity.com/0907-exploits/linea-xss.txt

www.vupen.com/english/advisories/2009/1837