VYPR
Unrated severityNVD Advisory· Published May 7, 2010· Updated Jun 16, 2026

CVE-2009-4852

CVE-2009-4852

Description

Multiple cross-site scripting (XSS) vulnerabilities in SemanticScuttle before 0.94.1 allow remote attackers to inject arbitrary web script or HTML via the sort parameter to index.php, and other unspecified vectors, a different issue than CVE-2008-6113. NOTE: some of these details are obtained from third party information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • cpe:2.3:a:festic:semanticscuttle:*:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:festic:semanticscuttle:*:*:*:*:*:*:*:*range: <=0.94
    • cpe:2.3:a:festic:semanticscuttle:0.85:*:*:*:*:*:*:*
    • cpe:2.3:a:festic:semanticscuttle:0.86:*:*:*:*:*:*:*
    • cpe:2.3:a:festic:semanticscuttle:0.87:*:*:*:*:*:*:*
    • cpe:2.3:a:festic:semanticscuttle:0.88:*:*:*:*:*:*:*
    • cpe:2.3:a:festic:semanticscuttle:0.89:*:*:*:*:*:*:*
    • cpe:2.3:a:festic:semanticscuttle:0.90:*:*:*:*:*:*:*
    • cpe:2.3:a:festic:semanticscuttle:0.91:*:*:*:*:*:*:*
    • cpe:2.3:a:festic:semanticscuttle:0.92:*:*:*:*:*:*:*
    • cpe:2.3:a:festic:semanticscuttle:0.93:*:*:*:*:*:*:*
  • Range: <0.94.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.