CVE-2006-1080

Cross-site scripting (XSS) vulnerability in login.php in Game-Panel 2.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the message parameter, possibly requiring a URL encoded value.

Date published : 2006-03-08

http://www.securityfocus.com/bid/16979

http://www.securityfocus.com/archive/1/426825/100/0/threaded