CVE-2006-2990
The CVE-2006-2990 entry describes a Cross-site scripting (XSS) vulnerability in VanillaSoft Helpdesk 2005 and earlier, exploitable via the username parameter in default.asp. Affected software: VanillaSoft Helpdesk (2005 and earlier). Root cause: improper handling of user-supplied username enablin...