Cross-site scripting (XSS) vulnerability in shownews.php in SupportPRO SupportDesk 3.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2010-05-10T20:00:00Z
Updated: 2024-09-16T21:07:43.243Z
Reserved: 2010-05-10T00:00:00Z
Link: CVE-2009-4861
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2010-05-11T12:02:09.173
Modified: 2010-05-11T12:02:09.173
Link: CVE-2009-4861
Redhat
No data.