Unrated severityNVD Advisory· Published Jul 20, 2009· Updated Jun 16, 2026
CVE-2009-2551
CVE-2009-2551
Description
Multiple cross-site scripting (XSS) vulnerabilities in ScriptsEz Easy Image Downloader allow remote attackers to inject arbitrary web script or HTML via the id parameter in a detail action to (1) main.php and possibly (2) demo_page.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:scriptsez:easy_image_downloader:-:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:scriptsez:easy_image_downloader:-:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
5- osvdb.org/55862nvdExploit
- packetstormsecurity.org/0907-exploits/eid-xss.txtnvdExploit
- www.securityfocus.com/bid/35701nvdExploit
- secunia.com/advisories/35838nvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/51722nvd
News mentions
0No linked articles in our index yet.