CVE-2006-2963
Cabacos Web CMS 3.8.498 and earlier is affected by a Cross-site scripting (XSS) vulnerability in Suchergebnisse.asp, exploitable via the suchtext parameter. The issue allows remote attackers to inject arbitrary web script or HTML. Affected file/component: Suchergebnisse.asp; vulnerable parameter:...