CVE-2006-1405 Information

Description

Cross-site scripting (XSS) vulnerability in search.aspx in SweetSuite.NET Content Management System (ssCMS) 2.1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the keywords parameter.

Reference

http://pridels0.blogspot.com/2006/03/sweetsuitenet-sscms-21x-xss-vuln.html http://secunia.com/advisories/19399 http://www.osvdb.org/24120 http://www.securityfocus.com/bid/17254 http://www.vupen.com/english/advisories/2006/1097 https://exchange.xforce.ibmcloud.com/vulnerabilities/25452