CVE-2004-1845
News Manager Lite 2.5 is affected by multiple cross-site scripting (XSS) vulnerabilities. An attacker can inject arbitrary script/HTML via specific user-supplied parameters: (1) email in comment_add.asp, (2) search in search.asp, and (3) n in category_news_headline.asp. The CVE entry notes these ...