CVE-2009-1408

NONECVSS 0.0

0.0

Cross-site scripting (XSS) vulnerability in webSPELL 4.2.0c allows remote attackers to inject arbitrary web script or HTML allows remote attackers to inject arbitrary web script or HTML via Javascript events such as onmouseover in nested BBcode tags, as demonstrated using (1) email, (2) img, and (3) url tags.

🔗 References (16)

cve@mitrehttp://osvdb.org/53782
cve@mitrehttp://secunia.com/advisories/34764
cve@mitrehttp://www.securityfocus.com/archive/1/502732/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/34595
cve@mitrehttp://www.webspell.org/index.php?site=files&file=25
cve@mitrehttp://www.webspell.org/index.php?site=news_comments&newsID=126&lang=uk
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/49937
cve@mitrehttps://www.exploit-db.com/exploits/8453
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/53782
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/34764
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/502732/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/34595
af854a3a-2127-422b-91ae-364da2661108http://www.webspell.org/index.php?site=files&file=25
af854a3a-2127-422b-91ae-364da2661108http://www.webspell.org/index.php?site=news_comments&newsID=126&lang=uk
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/49937

Is Your Infrastructure Affected by CVE-2009-1408?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-1408

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-1408?