CVE-2009-3593
CVE-2009-3593 affects Freelancers 1.0 and involves XSS in two parameters: the id parameter to placebid.php and the jobid parameter to post_resume.php. The vulnerability allows remote attackers to inject arbitrary web script or HTML. Reported CVSS v2 base score is 4.3 (MEDIUM) with network attack ...