CVE-2009-4857 | HackTesting

Cross-site scripting (XSS) vulnerability in login.php in PHP Photo Vote 1.3F allows remote attackers to inject arbitrary web script or HTML via the page parameter.

References

http://secunia.com/advisories/36171

http://osvdb.org/56828

http://packetstormsecurity.org/0908-exploits/ppv-xss.txt

https://exchange.xforce.ibmcloud.com/vulnerabilities/52323