CVE-2008-2209

Name of the Vulnerable Software and Affected Versions: Maian Greeting version 2.1

Description: The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the msg script and msg script2 parameters in the admin/inc/header.php file.

Recommendations: For Maian Greeting version 2.1, update the admin/inc/header.php file to properly sanitize the msg script and msg script2 parameters to prevent arbitrary web script or HTML injection. As a temporary workaround, consider restricting access to the admin/inc/header.php file until a patch is available.