2 matches found
CVE-2006-3533
Multiple cross-site scripting XSS vulnerabilities in Pivot 1.30 RC2 and earlier, when registerglobals is enabled, allow remote attackers to inject arbitrary web script or HTML via the 1 fg, 2 line1, 3 line2, 4 bg, 5 c1, 6 c2, 7 c3, and 8 c4 parameters in a includes/blogroll.php; 9 name and 10...
CVE-2006-3533
Pivot 1.30 RC2 and earlier are affected by multiple cross-site scripting (XSS) vulnerabilities. When register_globals is enabled, attackers can inject arbitrary web script or HTML via the parameters fg, line1, line2, bg, c1, c2, c3, c4 in includes/blogroll.php; name and js_name in includes/editor...