Multiple cross-site scripting (XSS) vulnerabilities in atomPhotoBlog.php in Atom PhotoBlog 1.0.9 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) Your Name, (2) Your Homepage, and (3) Your Comment fields, when using "Approve Comments."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
atom photoblog |