CVE-2009-3594

CVE-2009-3594

EPSS 1.0%

Cross-site scripting (XSS) vulnerability in bpost.php in BLOB Blog System before 1.2 allows remote attackers to inject arbitrary web script or HTML via the postid parameter.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://blob.yewipeya.net/bpost.php?postid=0008 http://secunia.com/advisories/35938 https://exchange.xforce.ibmcloud.com/vulnerabilities/51959 http://www.osvdb.org/56261