CVE-2006-4358
CVE-2006-4358 describes a cross-site scripting (XSS) vulnerability in the Diesel Pay product, affecting the code path index.php via the read parameter. The vulnerability allows remote attackers to inject arbitrary web script or HTML. According to the NVD entry, the CVSS v2 base score is 4.3 (Medi...