mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-08 03:26:30 +00:00
18 lines
637 B
Markdown
18 lines
637 B
Markdown
![]() |
### [CVE-2009-4904](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4904)
|
||
|

|
||
|

|
||
|

|
||
|
|
||
|
### Description
|
||
|
|
||
|
article.php in oBlog does not properly restrict comments, which allows remote attackers to cause a denial of service (blog spam) via a comment=new action.
|
||
|
|
||
|
### POC
|
||
|
|
||
|
#### Reference
|
||
|
- http://packetstormsecurity.org/0912-exploits/oblog-xssxsrf.txt
|
||
|
|
||
|
#### Github
|
||
|
No PoCs found on GitHub currently.
|
||
|
|