CVE-2006-1903
CVE-2006-1903 concerns multiple XSS vulnerabilities in UserLand Manila (9.5 and earlier). The affected surface is Manila’s web interface edited with the editInBrowser module, allowing remote attackers to inject arbitrary script or HTML via (1) the referer parameter in sendMail, and (2) attributes...