CVE-2009-3594

CVE-2009-3594

EPSS 1.0%

Cross-site scripting (XSS) vulnerability in bpost.php in BLOB Blog System before 1.2 allows remote attackers to inject arbitrary web script or HTML via the postid parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://blob.yewipeya.net/bpost.php?postid=0008 http://secunia.com/advisories/35938 https://exchange.xforce.ibmcloud.com/vulnerabilities/51959 http://www.osvdb.org/56261