CVE-2009-3598
The CVE-2009-3598 entry concerns a Cross-site scripting (XSS) vulnerability in survey_result.php of eCardMAX FormXP 2007. The flaw allows remote attackers to inject arbitrary web script or HTML via the sid parameter. Documented impact is the ability to execute script in a victim’s browser for aff...