CVE-2006-3607

Multiple cross-site scripting XSS vulnerabilities in Softbiz Banner Exchange Script aka Banner Exchange Network Script 1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the city parameter in a insertmember.php, and 2 a PHPSESSID cookie in b lostpassword.php, c...