CVE-2006-5770

Multiple cross-site scripting XSS vulnerabilities in ac4p Mobile allow remote attackers to inject arbitrary web script or HTML via 1 Bloks, 2 Newnews, 3 lBlok, and 4 foooot parameter in a index.php; Newnews, 5 newmsgs, and Bloks parameter in b MobileNews.php; Newnews parameter in c polls.php; 6...

CVE-2006-3138

Multiple cross-site scripting XSS vulnerabilities in phpMyDirectory 10.4.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 PIC parameter in offers-pix.php, 2 from parameter in cp/index.php, and 3 action parameter in cp/adminindex.php...