CVE-2006-2956
CVE-2006-2956 affects i.List (1.5 beta and earlier). The vulnerability is a cross-site scripting (XSS) issue in which an attacker can inject arbitrary script or HTML via the 1) searchword parameter to search.php or 2) siteurl parameter to add.php. Impact is remote script execution in the context ...