CVE-2009-2149
The CVE-2009-2149 entry describes multiple cross-site scripting (XSS) vulnerabilities in Campus Virtual-LMS. Attackers can inject arbitrary web script or HTML via parameters in specific pages: (1) courseid on enrolments/step1.php and (2) search or (3) siteid on files/shared_list.php. The affected...