CVE-2007-3426

Cross-site scripting (XSS) vulnerability in index.php in phpTrafficA 1.4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the lang parameter.

Date published : 2007-06-26

http://www.securityfocus.com/archive/1/472211/100/0/threaded

http://soft.zoneo.net/phpTrafficA/Files/get.php?phpTrafficA-1.4.3.tgz