CVE-2006-3484
ATutor before 1.5.3 is affected by multiple cross-site scripting (XSS) vulnerabilities. The issues allow remote attackers to inject arbitrary web script or HTML via specific parameters: show_courses or current_cat to admin/create_course.php; show_courses to users/create_course.php; p to documenta...