CVE-2006-2605 Information

Description

Cross-site scripting (XSS) vulnerability in DSChat 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the chatbox probably involving the ctext parameter to send.php.

Reference

http://secunia.com/advisories/20258 http://securityreason.com/securityalert/958 http://securitytracker.com/id?1016148 http://www.osvdb.org/25734 http://www.securityfocus.com/archive/1/434821/100/0/threaded http://www.securityfocus.com/bid/18084 http://www.vupen.com/english/advisories/2006/1961 https://exchange.xforce.ibmcloud.com/vulnerabilities/26641