CVE-2006-5632
CVE-2006-5632 describes an XSS vulnerability in iG Shop 1.4 affecting change_pass.php via the id parameter. The root cause is improper handling/validation of the id parameter in that script, enabling remote attackers to inject arbitrary web script or HTML. The connected PT Security entries (PT-20...