CVE-2006-6640
Omniture SiteCatalyst is affected by multiple XSS vulnerabilities. Remote attackers can inject arbitrary script/HTML via the ss parameter in search.asp and via the company and username fields on the web login page. No root-cause/exploit details or remediation are provided in the supplied documents.