GEN:SID 1:2345
Message WEB-PHP PhpGedView search.php access
Summary This event is generated when an attempt is made to access the
search.php script which contains known vulnerabilities and
is part of  the phpGedView CGI web application running on a server.
Impact Information gathering and possible cross site scripting attack.
Detailed Information This event is generated when an attempt is made to exploit a known
vulnerability in the phpGedView CGI web application running on a server.
Multiple vulnerabilities exist in the application which can lead to
cross site scripting attacks.
Affected Systems phpGedView
Attack Scenarios An attacker can supply code of their choice by including it in the
firstname parameter of the search.php script.
Ease of Attack Simple. No exploit software required.
Corrective Action Ensure the system is using an up to date version of the software and has
had all vendor supplied patches applied.
Additional References  
Rule References bugtraq: 9369
cve: 2004-0032