CVE-2006-1143
CVE-2006-1143 describes a cross-site scripting vulnerability in FTPoed Blog Engine 1.1. The flaw allows remote attackers to inject arbitrary script or HTML via the comment_body parameter used when posting comments. The affected component is the blog engine’s comment handling; root cause is unvali...