CVE-2009-4685

PHP Scripts Now Astrology - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in celebrities.php in PHP Scripts Now Astrology allows remote attackers to inject arbitrary web script or HTML via the day parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Moudi · textwebappsphp
https://www.exploit-db.com/exploits/34709

References (4)

Scores

EPSS 0.0135
EPSS Percentile 79.9%

Classification

CWE
CWE-79
Status published

Affected Products (2)

phpscriptsnow/astrology
n/a/n/a

Timeline

Published Mar 10, 2010
Tracked Since Feb 18, 2026