CVE-2009-3901

Multiple cross-site scripting (XSS) vulnerabilities in e-Courier CMS allow remote attackers to inject arbitrary web script or HTML via the UserGUID parameter to home/index.asp and other unspecified vectors.

Date published : 2009-11-06

http://packetstormsecurity.org/0911-exploits/ecourier-xss.txt

http://secunia.com/advisories/37240