VYPR
Unrated severityNVD Advisory· Published Jan 6, 2010· Updated Jun 16, 2026

CVE-2009-4580

CVE-2009-4580

Description

Multiple cross-site scripting (XSS) vulnerabilities in Hasta Blog 2.3 allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) yorumyaz.php and (2) blog.php.

Affected products

2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.