2 matches found
CVE-2006-3956
AWBS 2.2.2 contains multiple cross-site scripting (XSS) vulnerabilities in contact.php that allow remote injection of arbitrary script/HTML via the Name, AccountUsername, and Message parameters. The issue is described as XSS in AWBS 2.2.2; no further technical details (such as exact root cause, a...
CVE-2006-3956
Multiple cross-site scripting XSS vulnerabilities in contact.php in Advanced Webhost Billing System AWBS 2.2.2 allow remote attackers to inject arbitrary web script or HTML via the 1 Name, 2 AccountUsername and 3 Message parameters...