CVE-2006-6721

Multiple cross-site scripting XSS vulnerabilities in shout.php in Knusperleicht ShoutBox 2.6 allow remote attackers to inject arbitrary web script or HTML via the 1 sbNick or 2 sbKommentar parameter...

Knusperleicht Shoutbox 2.6 - 'Shout.php' HTML Injection

source: https://www.securityfocus.com/bid/21637/info Knusperleicht Shoutbox is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to execute HTML and script code in the context of the affected...