CVE-2006-0149

Cross-site scripting (XSS) vulnerability in SimpBook 1.0, with html_enable on (the default), allows remote attackers to inject arbitrary web script or HTML via the message field.

Date published : 2006-01-09

http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041127.html

http://securitytracker.com/id?1015451