Cross-site scripting (XSS) vulnerability in index.php in Online Photo Pro 2.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter.
References
Link | Resource |
---|---|
http://packetstorm.linuxsecurity.com/0904-exploits/opp20-xss.txt | Exploit |
http://secunia.com/advisories/34825 | Vendor Advisory |
http://www.securityfocus.com/bid/34625 | Exploit |
Configurations
History
No history.
Information
Published : 2010-07-12 13:27
Updated : 2024-02-28 11:41
NVD link : CVE-2009-4934
Mitre link : CVE-2009-4934
CVE.ORG link : CVE-2009-4934
JSON object : View
Products Affected
esoftpro
- online_photo_pro
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')