CVE-2010-4753 Information

Description

Cross-site scripting (XSS) vulnerability in LightNEasy.php in LightNEasy 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter which is not properly handled in a forced SQL error message.

Reference

http://holisticinfosec.org/content/view/168/45/ http://secunia.com/advisories/42391 http://www.lightneasy.org/punbb/viewtopic.php?id=1207