CVE-2009-2292
Appleple a-News 2.32 is affected by a Cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, potentially executing arbitrary script in a user’s browser. Public entries (NVD, JVN/JVNDb, CVE lists) corroborate the XSS fl...