CVE-2009-3594 Information

Description

Cross-site scripting (XSS) vulnerability in bpost.php in BLOB Blog System before 1.2 allows remote attackers to inject arbitrary web script or HTML via the postid parameter.

Reference

http://blob.yewipeya.net/bpost.php?postid=0008 http://secunia.com/advisories/35938 http://www.osvdb.org/56261 https://exchange.xforce.ibmcloud.com/vulnerabilities/51959