CVE-2006-2632
Cross-site scripting (XSS) vulnerability in Andrew Godwin ByteHoard 2.1 and earlier allows remote authenticated users to inject arbitrary web script or HTML via file descriptions.
Date published : 2006-05-30
http://www.securityfocus.com/bid/18136
http://www.securityfocus.com/archive/1/435135/100/0/threaded