Unrated severityNVD Advisory· Published Dec 14, 2009· Updated Jun 16, 2026
CVE-2009-4320
CVE-2009-4320
Description
Cross-site scripting (XSS) vulnerability in searchform.php in The Next Generation of Genealogy Sitebuilding (TNG) 7.1.2 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.
Affected products
2- cpe:2.3:a:lythgoes:the_next_generation_of_genealogy_sitebuilding:7.1.2:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/10387nvdExploit
- secunia.com/advisories/37711nvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/54726nvd
News mentions
0No linked articles in our index yet.