Unrated severityNVD Advisory· Published Feb 3, 2009· Updated Jun 16, 2026
CVE-2009-0404
CVE-2009-0404
Description
Multiple cross-site scripting (XSS) vulnerabilities in Bioinformatics htmLawed 1.1.3 and 1.1.4 allow remote attackers to inject arbitrary web script or HTML via invalid Cascading Style Sheets (CSS) expressions in the style attribute, which is processed by Internet Explorer 7.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
15cpe:2.3:a:bioinformatics:htmlawed:*:*:*:*:*:*:*:*+ 14 more
- cpe:2.3:a:bioinformatics:htmlawed:*:*:*:*:*:*:*:*range: <=1.1.3
- cpe:2.3:a:bioinformatics:htmlawed:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.0.9:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:bioinformatics:htmlawed:1.1.2:*:*:*:*:*:*:*
- (no CPE)range: 1.1.3, 1.1.4
Patches
Vulnerability mechanics
References
8- secunia.com/advisories/33655nvdVendor Advisory
- www.bioinformatics.org/phplabware/forum/viewtopic.phpnvdVendor Advisory
- freshmeat.net/projects/htmlawed/nvd
- freshmeat.net/projects/htmlawed/nvd
- osvdb.org/51650nvd
- www.bioinformatics.org/phplabware/internal_utilities/htmLawed/htmLawed_README.htmnvd
- www.securityfocus.com/bid/33507nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/48333nvd
News mentions
0No linked articles in our index yet.