CVE-2006-6746
The CVE concerns Xt-News 0.1, where multiple cross-site scripting (XSS) vulnerabilities affect user-supplied input via the id_news parameter. Specifically, the flaws can be triggered through add_comment.php or show_news.php, enabling remote attackers to inject arbitrary web script or HTML. Impact...