CVE-2009-4697

Multiple cross-site scripting (XSS) vulnerabilities in index.php in RadNICS Gold 5 allow remote attackers to inject arbitrary web script or HTML via the (1) order parameter in a ulist action and the (2) fid parameter in a view_forum action.

Date published : 2010-03-10

http://www.securityfocus.com/bid/35730

http://www.exploit-db.com/exploits/9196