CVE-2006-6459

CVE-2006-6459 describes a cross-site scripting (XSS) vulnerability in PhpBB Toplist 1.3.7. The flaw resides in toplist.php, allowing remote attackers to inject arbitrary HTML or web script via the (1) Name and (2) Information fields when adding a new site (action: toplistnew). The CVSS metrics in...