Unrated severityNVD Advisory· Published Dec 31, 2009· Updated Apr 23, 2026
CVE-2009-4523
CVE-2009-4523
Description
Cross-site scripting (XSS) vulnerability in index.php in Zainu 1.0 allows remote attackers to inject arbitrary web script or HTML via the searchSongKeyword parameter in a SearchSong action.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.packetstormsecurity.org/0910-exploits/zainu-xss.txtnvdExploit
- www.securityfocus.com/bid/36701nvdExploit
- secunia.com/advisories/36798nvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/53790nvd
News mentions
0No linked articles in our index yet.