CVE-2009-1732

CVE-2009-1732

EPSS 1.9%

Cross-site scripting (XSS) vulnerability in admin/usermanager in IPplan 4.91a allows remote attackers to inject arbitrary web script or HTML via the grp parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://holisticinfosec.org/content/view/113/45/http://osvdb.org/54600 http://secunia.com/advisories/34985 http://secunia.com/advisories/35714 http://www.debian.org/security/2009/dsa-1827 http://www.securityfocus.com/bid/35037