CVE-2009-1315
CVE-2009-1315 describes multiple cross-site scripting (XSS) vulnerabilities in AbleSpace 1.0. The issue allows remote attackers to inject arbitrary web script or HTML via: (1) gid parameter in groups_profile.php, (2) cat_id and (3) razd_id parameters in adv_cat.php, and (4) the URL parameter to b...