CVE-2006-5035
CVE-2006-5035 describes multiple cross-site scripting (XSS) vulnerabilities in Paul Smith Computer Services vCAP 1.7.0. The flaws allow remote attackers to inject arbitrary web script or HTML via the statusmsg parameter in RegisterPage.cgi or a URI to a nonexistent file. The CVSSv2 base score is ...