CVE-2009-4384
CVE-2009-4384 affects Scriptsez.net Ez Poll Hoster (EPH). The vulnerabilities are cross-site scripting (XSS) via two parameters: the pid parameter in a code action to index.php and the uid parameter in a view action to profile.php. Root cause: insufficient input validation allowing injection of a...