2 matches found
CVE-2006-4500
Cross-site scripting XSS vulnerability in index.php in ezPortal/ztml CMS 1.0 allows remote attackers to inject arbitrary web script or HTML via the 1 about, 2 again, 3 lastname, 4 email, 5 password, 6 album, 7 id, 8 table, 9 desc, 10 doc, 11 mname, 12 max, 13 htpl, 14 pheader, and possibly other...
CVE-2006-4500
The CVE-2006-4500 entry concerns a Cross-site Scripting (XSS) flaw in ezPortal/ztml CMS 1.0. The vulnerability arises in index.php, where multiple parameters (including about, lastname, email, password, album, id, table, desc, doc, mname, max, htpl, pheader, and possibly others) can be used to in...