CVE-2009-3303

Metadata

CVE-2009-3303
4.3
security.debian.org, debian.org, securityfocus.com
2009-11-24
2017-06-06 20:21

Description

Cross-site scripting (XSS) vulnerability in www/help/tracker.php in GForge 4.5.14, 4.7 rc2, and 4.8.1 allows remote attackers to inject arbitrary web script or HTML via the helpname parameter.

Related Vulnerabilities

platform vulnerability
CVE-2009-3303