2 matches found
CVE-2006-4668
CVE-2006-4668 describes an XSS in Rob Hensley AckerTodo 4.0. The vulnerability resides in index.php where the task_id parameter used in an edit_task command can be exploited by remote attackers to inject arbitrary web script or HTML. Public references confirm the affected component as AckerTodo 4...
AckerTodo 4.0 - index.php Cross-Site Scripting
AckerTodo 4.0 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/19894/info AckerTodo is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue would allow an attacker to steal cookie-based...