Unrated severityNVD Advisory· Published Jul 24, 2009· Updated Jun 16, 2026
CVE-2009-2589
CVE-2009-2589
Description
Multiple cross-site scripting (XSS) vulnerabilities in Hutscripts PHP Website Script allow remote attackers to inject arbitrary web script or HTML via the msg parameter to (1) feedback.php, (2) index.php, and (3) lostpassword.php.
Affected products
2- cpe:2.3:a:resalecode:hutscripts_php_website_script:-:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
7- packetstormsecurity.org/0907-exploits/hutscript-sqlxss.txtnvdExploit
- secunia.com/advisories/35893nvdVendor Advisory
- www.vupen.com/english/advisories/2009/1978nvdVendor Advisory
- osvdb.org/56170nvd
- osvdb.org/56171nvd
- osvdb.org/56172nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/51912nvd
News mentions
0No linked articles in our index yet.