CVE-2009-2131

Metadata

CVE-2009-2131
3.5
4homepages.de, securityfocus.com, vupen.com, exchange.xforce.ibmcloud.com, exploit-db.com
2009-06-19
2017-09-29 06:09

Description

Cross-site scripting (XSS) vulnerability in 4images 1.7.7 and earlier allows remote authenticated users to inject arbitrary web script or HTML by providing a crafted user_homepage parameter to member.php, and then posting a comment associated with a picture.

Related Vulnerabilities