2 matches found
CVE-2009-2595
Cross-site scripting XSS vulnerability in productSearch.html in Censura 2.0.4 and 2.1.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter in a ProductSearch action...
CVE-2009-2595
CVE-2009-2595 is an XSS vulnerability in the ProductSearch action of Censura, affecting versions 2.0.4 and 2.1.0. The issue arises in the q parameter of ProductSearch, allowing remote attackers to inject arbitrary web script or HTML. The NVD entry lists a medium severity (CVSS v2.0, AV:N/AC:M/Au:...