CVE-2005-4494
SPIP 1.8.2 and earlier exposes a cross-site scripting (XSS) vulnerability. According to the CVE record, remote attackers can inject arbitrary web script or HTML via unspecified parameters to spip_login.php3 and spip_pass.php3. The affected software is SPIP (content management system), but the des...