Unrated severityNVD Advisory· Published Jul 24, 2009· Updated Jun 16, 2026
CVE-2009-2588
CVE-2009-2588
Description
Multiple cross-site scripting (XSS) vulnerabilities in Hotscripts Type PHP Clone Script allow remote attackers to inject arbitrary web script or HTML via the msg parameter to (1) feedback.php, (2) index.php, and (3) lostpassword.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:resalecode:hotscripts_type_php_clone_script:-:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
7- packetstormsecurity.org/0907-exploits/hotscriptsclone-xss.txtnvdExploit
- secunia.com/advisories/35892nvdVendor Advisory
- www.vupen.com/english/advisories/2009/1979nvdVendor Advisory
- osvdb.org/56167nvd
- osvdb.org/56168nvd
- osvdb.org/56169nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/51911nvd
News mentions
0No linked articles in our index yet.