CVE-2006-1916
CVE-2006-1916 concerns multiple cross-site scripting (XSS) vulnerabilities in profile.php of DbbS 2.0-alpha and earlier. The vulnerabilities arise from unsafely handling user input in the (1) ulocation and (2) uhobbies parameters, enabling remote attackers to inject arbitrary script/HTML. The con...