2 matches found
CVE-2006-0443
CVE-2006-0443 describes a cross-site scripting (XSS) flaw in CheesyBlog 1.0 (archive.php) that allows remote attackers to inject arbitrary script/HTML via the realname, comment parameters, or a javascript: URI in the url parameter when adding a comment. Affected component is the archive.php handl...
CVE-2006-0443
Cross-site scripting XSS vulnerability in archive.php in CheesyBlog 1.0 allows remote attackers to inject arbitrary web script or HTML via the 1 realname and 2 comment parameters, or 3 via a javascript URI in the url parameter, when adding a comment...