CVE-2006-6357
PHPNews 1.3.0 and earlier contains a cross-site scripting (XSS) vulnerability in templates/cat_temp.php. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The public details specify the affected product and file but do not provide exploit steps, aff...