CVE-2006-0409

Cross-site scripting (XSS) vulnerability in index.php in Pixelpost Photoblog 1.4.3 allows remote attackers to inject arbitrary web script or HTML via the "Add Comment" field in a comment popup.

Date published : 2006-01-24

http://www.securityfocus.com/bid/16362

http://www.securityfocus.com/archive/1/423384/100/0/threaded