Vulnerability Details CVE-2009-3858
Cross-site scripting (XSS) vulnerability in GejoSoft allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI in photos/tags.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 80.6%
CVSS Severity
CVSS v2 Score 4.3
References
- http://osvdb.org/56061
- http://packetstormsecurity.org/0907-exploits/gejosoft-xss.txt
- http://secunia.com/advisories/35921
- http://www.vupen.com/english/advisories/2009/1968
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51879
- http://osvdb.org/56061
- http://packetstormsecurity.org/0907-exploits/gejosoft-xss.txt
- http://secunia.com/advisories/35921
- http://www.vupen.com/english/advisories/2009/1968
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51879