Loading
Generated remediation guidance and an executive summary. No account required.
Cross-site scripting (XSS) vulnerability in frmTickets.aspx in SmarterTools SmarterTrack before 4.0.3504 allows remote attackers to inject arbitrary web script or HTML via the email address field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Use CWE-79, Smartertools vendor hub and Smartertrack product page to widen CVE-2009-4995 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2022-24387, CVE-2022-24386 and CVE-2022-24384 for nearby disclosures in the same product family.