CVE-2010-5027
The CVE-2010-5027 entry concerns a Cross-site scripting (XSS) vulnerability in the winners.php component of Science Fair In A Box (SFIAB) versions 2.0.6 and 2.2.0. The attack vector involves the type parameter, allowing remote attackers to inject arbitrary web script or HTML. Affected product: Sc...