Unrated severityNVD Advisory· Published May 11, 2010· Updated Jun 16, 2026
CVE-2009-4859
CVE-2009-4859
Description
Multiple cross-site scripting (XSS) vulnerabilities in Online Work Order Suite (OWOS) Lite Edition 3.10 allow remote attackers to inject arbitrary web script or HTML via the show parameter to (1) default.asp and (2) report.asp, and the (3) go parameter to login.asp.
Affected products
1- cpe:2.3:a:onlinetechtools.com:owos_lite:3.10:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2- packetstormsecurity.org/0908-exploits/owosasp-xss.txtnvdExploit
- secunia.com/advisories/36244nvdVendor Advisory
News mentions
0No linked articles in our index yet.