CVE-2006-1293
CVE-2006-1293 describes a cross-site scripting (XSS) vulnerability in Contrexx CMS up to version 1.0.8 (and earlier) where an attacker can inject arbitrary script or HTML via the PHP_SELF query string to index.php. Affected software: Contrexx CMS (versions