CVE-2009-2114
SkyBlueCanvas 1.1 r237 contains multiple cross-site scripting (XSS) vulnerabilities in admin.php. The issue allows remote attackers to inject arbitrary web script or HTML via the parameters mgroup, mgr, objtype, id, and dir. The CVE entry confirms XSS but does not provide exploit details, affecte...