CVE-2009-4320
CVE-2009-4320 describes a cross-site scripting (XSS) vulnerability in searchform.php of The Next Generation of Genealogy Sitebuilding (TNG) version 7.1.2, where an attacker can inject arbitrary script or HTML via the msg parameter. The affected component is the PHP search form handler; root cause...