CVE-2006-1430
CVE-2006-1430 affects CONTROLzx HMS (formerly DRZES) 3.3.4 and earlier. The vulnerability is described as multiple cross-site scripting (XSS) flaws that allow remote attackers to inject arbitrary script/HTML via specific user input fields: (1) dedicatedPlanID in dedicated_order.php, (2) sharedPla...