Unrated severityNVD Advisory· Published Apr 28, 2009· Updated Jun 16, 2026
CVE-2009-1454
CVE-2009-1454
Description
Cross-site scripting (XSS) vulnerability in tasks.php in WebCollab before 2.50 (aka Billy Goat) allows remote attackers to inject arbitrary web script or HTML via the selection parameter in a todo action.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:andrew_simpson:webcollab:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:andrew_simpson:webcollab:*:*:*:*:*:*:*:*range: <=2.40
- cpe:2.3:a:andrew_simpson:webcollab:2.20:*:*:*:*:*:*:*
- cpe:2.3:a:andrew_simpson:webcollab:2.30:*:*:*:*:*:*:*
- cpe:2.3:a:andrew_simpson:webcollab:2.31:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.