Unrated severityNVD Advisory· Published Sep 30, 2009· Updated Jun 16, 2026
CVE-2009-3493
CVE-2009-3493
Description
Multiple cross-site scripting (XSS) vulnerabilities in Zenas PaoBacheca Guestbook 2.1 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) scrivi.php and (2) index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:zenas:paobacheca_guestbook:2.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:zenas:paobacheca_guestbook:2.1:*:*:*:*:*:*:*
- (no CPE)range: =2.1
Patches
Vulnerability mechanics
References
5- osvdb.org/58163nvdExploit
- osvdb.org/58164nvdExploit
- packetstormsecurity.org/0909-exploits/paobacheca-xss.txtnvdExploit
- secunia.com/advisories/36741nvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/53323nvd
News mentions
0No linked articles in our index yet.