CVE-2006-3237
The CVE-2006-3237 entry describes a Cross-site scripting (XSS) flaw in the Enterprise Groupware System (EGS) before or at version 1.2.4, exploitable via the module parameter on index.php. The underlying issue is an input handling/reflective scripting vector that allows remote attackers to inject ...