CVE-2006-0706 Information

Description

Cross-site scripting vulnerability in eintrag.php in Gästebuch (Gastebuch) before 1.3.3 allows remote attackers to inject arbitrary web script or HTML via the URL which is used in the homepage parameter.

Reference

http://marc.info/?l=bugtraq&m=113986789801121&w=2 http://secunia.com/advisories/18849 http://www.php4scripte.de/index.php http://www.securityfocus.com/bid/16615 http://www.vupen.com/english/advisories/2006/0566 https://exchange.xforce.ibmcloud.com/vulnerabilities/24670