CVE-2009-3779

Name of the Vulnerable Software and Affected Versions vCard versions 5.x before 5.x-1.4 vCard versions 6.x before 6.x-1.3

Description A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. This is related to the addition of the theme vcard function to a theme and the use of default content.

Recommendations For vCard versions 5.x before 5.x-1.4, update to version 5.x-1.4 or later. For vCard versions 6.x before 6.x-1.3, update to version 6.x-1.3 or later.