CVE-2006-1554

2006-03-31T11:06:00
ID CVE-2006-1554
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:33:00

Description

Cross-site scripting (XSS) vulnerability in VSNS Lemon 3.2.0 allows remote attackers to inject arbitrary web script or HTML via the name parameter while adding a comment. Successful exploitation requires that the "magic_quotes_gpc" parameter is disabled.