CVE-2005-2981
CVE-2005-2981 describes a cross-site scripting (XSS) vulnerability in Orion versions 1.3.8 and 1.4.5 . The issue arises from user-supplied input in the URL not being properly quoted in the resulting 404 error page, enabling an attacker to inject arbitrary script/HTML. The core vulnerability is th...