Unrated severityNVD Advisory· Published Dec 22, 2009· Updated Jun 16, 2026
CVE-2009-4381
CVE-2009-4381
Description
Cross-site scripting (XSS) vulnerability in index.php in texmedia Million Pixel Script 3 allows remote attackers to inject arbitrary web script or HTML via the pa parameter. NOTE: some of these details are obtained from third party information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:texmedia:million_pixel_script:3.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:texmedia:million_pixel_script:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:texmedia:million_pixel_script:3.0:-:pro:*:*:*:*:*
- cpe:2.3:a:texmedia:million_pixel_script:3.0:-:pro_lotto:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
6- packetstormsecurity.org/0912-exploits/mps-xss.txtnvdExploit
- www.exploit-db.com/exploits/10399nvdExploit
- www.securityfocus.com/bid/37315nvdExploit
- secunia.com/advisories/37700nvdVendor Advisory
- osvdb.org/60961nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/54742nvd
News mentions
0No linked articles in our index yet.