CVE-2006-3060
P.A.I.D 2.2 contains a Cross-site scripting (XSS) vulnerability exploitable via (1) read parameter in index.php, (2) farea parameter in faq.php, and (3) unspecified inputs on the My Account login page. The CVSS v2 base score is 4.3 (Medium) with potential to inject arbitrary web script/HTML. No r...