Vulnerability Details CVE-2009-1732
Cross-site scripting (XSS) vulnerability in admin/usermanager in IPplan 4.91a allows remote attackers to inject arbitrary web script or HTML via the grp parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.3%
CVSS Severity
CVSS v2 Score 4.3
References
- http://holisticinfosec.org/content/view/113/45/
- http://osvdb.org/54600
- http://secunia.com/advisories/34985
- http://secunia.com/advisories/35714
- http://www.debian.org/security/2009/dsa-1827
- http://www.securityfocus.com/bid/35037
- http://holisticinfosec.org/content/view/113/45/
- http://osvdb.org/54600
- http://secunia.com/advisories/34985
- http://secunia.com/advisories/35714
- http://www.debian.org/security/2009/dsa-1827
- http://www.securityfocus.com/bid/35037
Products affected by CVE-2009-1732
-
cpe:2.3:a:richard_ellerbrock:ipplan:4.91a