CVE-2006-7085
Rigter Portal System (RPS) 1.0, 2.0, and 3.0 allows remote attackers to add arbitrary content and conduct XSS attacks via a direct request to add_art.php. NOTE: this issue was originally reported as SQL injection, but this is not likely.
Date published : 2007-02-27
http://lists.grok.org.uk/pipermail/full-disclosure/2006-July/048006.html