2 matches found
CVE-2006-0149
Cross-site scripting XSS vulnerability in SimpBook 1.0, with htmlenable on the default, allows remote attackers to inject arbitrary web script or HTML via the message field...
CVE-2006-0149
CVE-2006-0149 describes an XSS vulnerability in SimpBook 1.0 when html_enable is on (default). The flaw allows remote attackers to inject arbitrary script/HTML via the message field. Affected component is the message handling; root cause is lack of input sanitization leading to reflected/Stored X...