2 matches found
CVE-2009-3493
Multiple cross-site scripting XSS vulnerabilities in Zenas PaoBacheca Guestbook 2.1 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 scrivi.php and 2 index.php...
CVE-2009-3493
The CVE-2009-3493 issue affects the Zenas PaoBacheca Guestbook 2.1, with multiple XSS vulnerabilities exploitable via PATH_INFO to scrivi.php and index.php. The root cause is improper handling of PATH_INFO that allows injection of arbitrary web script or HTML. Impact described in sources indicate...