2 matches found
CVE-2006-3397
Taskjitsu (CVE-2006-3397) has a cross-site scripting vulnerability affecting versions before 2.0.1. The flaw allows remote attackers to inject arbitrary web script or HTML through multiple parameters when creating a task, notably the title and description fields. The PT-2006-4289 entry confirms t...
CVE-2006-3397
Multiple cross-site scripting XSS vulnerabilities in Taskjitsu before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters, including the 1 title and 2 description parameters when creating a task...