CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-2771

Cross-site scripting (XSS) vulnerability in Free Arcade Script 1.3 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter to the default URI under search/.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.5%

CVSS Severity

CVSS v2 Score 4.3

References

http://osvdb.org/56580
http://packetstormsecurity.org/0907-exploits/fas-xss.txt
http://secunia.com/advisories/36025
http://osvdb.org/56580
http://packetstormsecurity.org/0907-exploits/fas-xss.txt
http://secunia.com/advisories/36025

Products affected by CVE-2009-2771

Freearcadescript » Free Arcade Script » Version: 1.3

cpe:2.3:a:freearcadescript:free_arcade_script:1.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-2771

Products

Pricing

Contact Us