CVE-2008-2204

Multiple cross-site scripting (XSS) vulnerabilities in admin/inc/header.php in Maian Search 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) header, (2) header2, (3) header3, (4) header4, (5) header5, (6) header6, (7) header7, (8) header8, and (9) header9 parameters.

Date published : 2008-05-14

http://www.securityfocus.com/bid/29032

http://www.securityfocus.com/archive/1/491586/100/0/threaded