2 matches found
CVE-2006-0073
CVE-2006-0073 is an XSS vulnerability reported for DiscusWare Discus Freeware 3.10.5 and Discus Freeware Professional 3.10.4. The issue arises because the application does not properly sanitize unsanitized data in the URL before including it in an error message, enabling remote attackers to injec...
CVE-2006-0073
Cross-site scripting XSS vulnerability in DiscusWare Discus Freeware 3.10.5 and Professional 3.10.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a URL, which is not properly sanitized from the resulting error message. NOTE: the provenance of this...