NuytsTech Security

CVE-2006-1822

by ·

Cross-site scripting (XSS) vulnerability in search.php in FarsiNews 2.5.3 Pro and earlier allows remote attackers to inject arbitrary web script or HTML via the selected_search_arch parameter.

Date published : 2006-04-18

http://www.securityfocus.com/bid/17534

http://www.securityfocus.com/archive/1/431011/100/0/threaded

Tags: