CVE-2009-2114

Multiple cross-site scripting (XSS) vulnerabilities in admin.php in SkyBlueCanvas 1.1 r237 allow remote attackers to inject arbitrary web script or HTML via the (1) mgroup, (2) mgr, (3) objtype, (4) id, and (5) dir parameters.
Configurations

Configuration 1 (hide)

cpe:2.3:a:skybluecanvas:skybluecanvas:1.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-06-18 21:30

Updated : 2024-02-04 17:33


NVD link : CVE-2009-2114

Mitre link : CVE-2009-2114

CVE.ORG link : CVE-2009-2114


JSON object : View

Products Affected

skybluecanvas

  • skybluecanvas
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')