CVE-2005-2488

Cross-site scripting XSS vulnerability in Web Content Management News System allows remote attackers to inject arbitrary web script or HTML via 1 the strRootpath parameter to validsession.php or 2 the strTable parameter to Admin/News/List.php...