Unrated severityNVD Advisory· Published Jun 11, 2010· Updated Apr 29, 2026

CVE-2009-4888

Description

Cross-site scripting (XSS) vulnerability in poster.php in PHortail 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the (1) pseudo, (2) email, (3) ti, and (4) txt parameters.

Affected products

Nskate/Phortail
cpe:2.3:a:nskate:phortail:1.2.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.org/0903-exploits/phortail-xss.txtnvdExploit
www.securityfocus.com/bid/34038nvdExploit
secunia.com/advisories/34203nvdVendor Advisory
www.vupen.com/english/advisories/2009/0631nvdVendor Advisory
osvdb.org/52502nvd
exchange.xforce.ibmcloud.com/vulnerabilities/49143nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000