Power Phlogger Cross-site Scripting Vulnerability Network Vulnerability

Summary

Power Phlogger is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user- supplied input. Attackers can exploit this issue to steal cookie-based authentication credentials or to control how the site is rendered to the user. Power Phlogger 2.2.5 is vulnerable other versions may also be affected.

References

http://www.phpee.com/
http://www.securityfocus.com/bid/37150
http://www.websecurity.com.ua/1845

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4253

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Apache Tomcat cal2.jsp Cross Site Scripting Vulnerability
Afian 'includer.php' Directory Traversal Vulnerability
AdaptCMS 'init.php' Remote File Include Vulnerability
Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities
@Mail 'admin.php' Cross-Site Scripting Vulnerabilities

Take action and discover your vulnerabilities