CVE-2006-6768 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in default.asp in PWP Technologies The Classified Ad System allow remote attackers to inject arbitrary web script or HTML via the (1) cat or (2) main parameter.

Reference

http://secunia.com/advisories/23289 http://securityreason.com/securityalert/2075 http://www.securityfocus.com/archive/1/452194/100/200/threaded http://www.securityfocus.com/bid/21198 https://exchange.xforce.ibmcloud.com/vulnerabilities/30445