CVE-2009-0247

Name of the Vulnerable Software and Affected Versions 53KF Web IM 2009 versions Home, Professional, and Enterprise editions

Description The issue allows remote attackers to conduct cross-site scripting (XSS) attacks by sending a crafted IM message. This is related to the msg variable.

Recommendations For 53KF Web IM 2009 Home edition, update the client-side protection mechanisms to prevent cross-site scripting attacks. For 53KF Web IM 2009 Professional edition, restrict the use of the msg variable to minimize the risk of exploitation. For 53KF Web IM 2009 Enterprise edition, consider implementing additional server-side validation to prevent crafted IM messages.