CVE-2006-5770
Multiple XSS vulnerabilities in ac4p Mobile (CVE-2006-5770) allow remote attackers to inject arbitrary scripts via parameters such as Bloks, Newnews, lBlok, foooot in index.php; Newnews/newmsgs in MobileNews.php; polls.php; send.php; up.php; cp/index.php. Root cause is unsanitized user input in m...