CVE-2006-2870 Information

Description

Cross-site scripting (XSS) vulnerability in forum_search.asp in Intelligent Solutions Inc. ASP Discussion Forum allows remote attackers to inject arbitrary web script or HTML via the search variable.

Reference

http://colander.altervista.org/advisory/ASPDisc.txt http://secunia.com/advisories/20425 http://www.securityfocus.com/bid/18237 http://www.vupen.com/english/advisories/2006/2113 https://exchange.xforce.ibmcloud.com/vulnerabilities/26929