CVE-2006-6180
CVE-2006-6180 is a reflected cross-site scripting vulnerability in articles.asp of Expinion.net iNews Publisher (iNP) 2.5 and earlier, triggered by the hl parameter. Root cause: improper sanitization of user input allowing arbitrary script/HTML injection. Impact: partial confidentiality, integrit...