CVE-2006-2891
Pixelpost’s admin/index.php (versions 1-5rc1-2 and earlier) contains a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary HTML or web script through the loginmessage parameter. The vulnerability is described across multiple sources (NVD and related records) with the ...