CVE-2008-1470
CVE-2008-1470 describes an incomplete blacklist vulnerability in IISWebAgentIF.dll of the WebID RSA Authentication Agent 5.3 (and possibly earlier) , allowing remote attackers to perform cross-site scripting (XSS) via the postdata parameter. The issue stems from an incomplete fix for CVE-2005-111...