CVE-2005-3285
CVE-2005-3285 describes a Cross-site scripting (XSS) vulnerability in Comersus BackOffice Plus, specifically in comersus_backoffice_searchItemForm.asp. The issue allows remote attackers to inject arbitrary web script or HTML via the parameters forwardTo1, forwardTo2, nameFT1, or nameFT2. The vuln...