CVE-2009-3195

Metadata

CVE-2009-3195
4.3
packetstormsecurity.org, vupen.com
2009-09-15
2017-06-06 20:21

Description

Multiple cross-site scripting (XSS) vulnerabilities in JCE-Tech Auction RSS Content Script 3.0 allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) rss.php and (2) search.php.

Related Vulnerabilities