CVE-2006-6356
The CVE-2006-6356 entry covers multiple XSS vulnerabilities in PHPNews 1.3.0, specifically in templates/link_temp.php. The issue allows remote attackers to inject arbitrary web script or HTML by supplying one of several parameters (url, id, subject, username, time). The root cause is input handli...