CVE-2009-4521

Metadata

CVE-2009-4521
4.3
antisnatchor.com, securityfocus.com, securityfocus.com, bugs.eclipse.org, exchange.xforce.ibmcloud.com
2009-12-31
2017-08-17 06:10

Description

Cross-site scripting (XSS) vulnerability in birt-viewer/run in Eclipse Business Intelligence and Reporting Tools (BIRT) before 2.5.0, as used in KonaKart and other products, allows remote attackers to inject arbitrary web script or HTML via the __report parameter.

Related Vulnerabilities