Detefix

2 exploits Active since Dec 2006
CVE-2006-6356 EXPLOITDB text WRITEUP
PHPNews 1.3.0 - Cross-Site Scripting via URL, ID, Subject, Username, or Time Parameter
Multiple cross-site scripting (XSS) vulnerabilities in templates/link_temp.php in PHPNews 1.3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) url, (2) id, (3) subject, (4) username, or (5) time parameter.
CVE-2006-6300 EXPLOITDB text WRITEUP
CuteNews 1.3.6 - Cross-Site Scripting via Result Parameter
Cross-site scripting (XSS) vulnerability in CuteNews 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the result parameter.