Unrated severityNVD Advisory· Published Sep 23, 2009· Updated Jun 16, 2026
CVE-2009-3320
CVE-2009-3320
Description
Cross-site scripting (XSS) vulnerability in scrivi.php in Zenas PaoLink (aka Pao-Link) 1.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 1.0
Patches
Vulnerability mechanics
References
4- osvdb.org/58166nvdExploit
- packetstormsecurity.org/0909-exploits/paolink-xss.txtnvdExploit
- secunia.com/advisories/36738nvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/53324nvd
News mentions
0No linked articles in our index yet.