Hasta Blog Security Vulnerabilities - November

cve

CVE-2009-4580

Multiple cross-site scripting (XSS) vulnerabilities in Hasta Blog 2.3 allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) yorumyaz.php and (2) blog.php.

5.9AI Score

0.004EPSS

2010-01-06 10:00 PM