CVE-2006-6649
CVE-2006-6649 describes a cross-site scripting (XSS) vulnerability in display.php of HyperVM 1.2 and earlier, exploitable via an encoded frm_action parameter. The weakness is disclosed in the CVE entry, which notes that the vendor disputes the issue and that the dispute could concern severity or ...