CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-0532

Cross-site scripting (XSS) vulnerability in password.php in Scripts For Sites (SFS) EZ Baby allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving the u2 parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.7%

CVSS Severity

CVSS v2 Score 4.3

References

http://secunia.com/advisories/33989
http://www.securityfocus.com/bid/33635
https://exchange.xforce.ibmcloud.com/vulnerabilities/48547
http://secunia.com/advisories/33989
http://www.securityfocus.com/bid/33635
https://exchange.xforce.ibmcloud.com/vulnerabilities/48547

Products affected by CVE-2009-0532

Scripts-For-Sites » Ez Baby » Version: N/A

cpe:2.3:a:scripts-for-sites:ez_baby:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0532

Products

Pricing

Contact Us