CVE-2005-2393
CVE-2005-2393 affects CuteNews 1.3.6. The vulnerability is a cross-site scripting (XSS) flaw exploitable via two user-supplied parameters: (1) lastusername in index.php and (2) selected_search_arch in search.php. The underlying issue is insufficient input sanitization/escaping, allowing a remote ...