DirectAdmin 1.28/1.29 CMD_SHOW_USER user Parameter XSS

No description provided by source...

CVE-2006-5983

CVE-2006-5983 concerns DirectAdmin 1.28.1 with multiple reflected XSS vectors. The connected PTSecurity entry details that remote authenticated users can inject arbitrary script/HTML via a range of parameters and commands: user parameter to CMD SHOW RESELLER/SHOW USER (Admin level); TYPE paramete...