CVE-2009-3057 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in AOM Software Beex 3 allow remote attackers to inject arbitrary web script or HTML via the navaction parameter to (1) news.php and (2) partneralle.php.

Reference

http://packetstormsecurity.org/0909-exploits/beex-xss.txt http://secunia.com/advisories/36550