Cross-site scripting (XSS) vulnerability in search.php for Simple PHP Blog (sphpBlog) 0.4.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Simple_php_blog |
Alexander_palmo |
0.4.0 |
0.4.0 |
References