3 matches found
CVE-2009-4348
Cross-site scripting XSS vulnerability in index.php in Harold Bakker's NewsScript HB-NS 1.3 allows remote attackers to inject arbitrary web script or HTML via the topic parameter in a topic action, a different vector than CVE-2006-2146...
CVE-2009-4348
The CVE-2009-4348 entry concerns Harold Bakker’s NewsScript (HB-NS) 1.3, where a Cross‑Site Scripting (XSS) flaw exists in index.php. The bug is triggered via the topic parameter in a topic action, enabling remote attackers to inject arbitrary script/HTML. This vulnerability is documented as a se...
CVE-2009-4348
Cross-site scripting XSS vulnerability in index.php in Harold Bakker's NewsScript HB-NS 1.3 allows remote attackers to inject arbitrary web script or HTML via the topic parameter in a topic action, a different vector than CVE-2006-2146...