CVE-2006-2992
CVE-2006-2992 describes a cross-site scripting (XSS) vulnerability in the page display.asp of My Photo Scrapbook 1.0 and earlier, where an attacker can inject arbitrary web script or HTML via the key_m parameter. The affected software is My Photo Scrapbook 1.0 and earlier; the underlying cause is...