CVE-2006-3769
Top XL 1.1 and earlier are affected by multiple cross-site scripting (XSS) vulnerabilities. The issue arises from user-supplied input in specific parameters: (1) pass and (2) pass2 in add.php, and (3) id in members/index.php. Successful exploitation would allow remote attackers to inject arbitrar...