CVE-2009-1448
Lovpop Apricot - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in apricot.php in LovPop.net APRICOT, probably 1.20, allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.
Scores
EPSS
0.0025
EPSS Percentile
48.5%
Classification
CWE
CWE-79
Status
published
Affected Products (2)
lovpop/apricot
n/a/n/a
Timeline
Published
Apr 27, 2009
Tracked Since
Feb 18, 2026