CVE-2010-4753

Cross-site scripting (XSS) vulnerability in LightNEasy.php in LightNEasy 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter, which is not properly handled in a forced SQL error message.

Date published : 2011-03-01

http://www.lightneasy.org/punbb/viewtopic.php?id=1207

http://holisticinfosec.org/content/view/168/45/