CVE-2009-0830
CVE-2009-0830 describes a cross-site scripting (XSS) vulnerability in QuoteBook that allows remote attackers to inject arbitrary web script or HTML via the (1) QuoteName and (2) QuoteText parameters to quotesadd.php. The root cause is unvalidated/unsanitized input in these fields, enabling script...