CVE-2006-6300
CVE-2006-6300 concerns CuteNews 1.3.6, where a Cross-site scripting (XSS) flaw allows remote attackers to inject arbitrary web script or HTML via the result parameter. Vulnerable component: the web application handling the result input; root cause is improper sanitization/execution of user-suppli...