CVE-2009-4903
CVE-2009-4903 describes a Cross-site Scripting (XSS) flaw in the web app oBlog . The vulnerability is in the file index.php and is exploitable via the search parameter , allowing remote attackers to inject arbitrary script/HTML. The NVD entry notes a non-authoritative provenance (“NOTE: the prove...