2 matches found
CVE-2006-6035
Cross-site scripting XSS vulnerability in list.php in BLOG:CMS 4.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the FADDR parameter...
CVE-2006-6035
Vulnerability summary: XSS in BLOG:CMS 4.1.3 and earlier via the FADDR parameter in list.php. An attacker can inject arbitrary script/HTML, enabling script execution in victims’ contexts. Affected: BLOG:CMS 4.1.3 and earlier; root cause: inadequate input handling for FADDR. Impact: XSS potential;...