Secure Shapes

1 exploit Active since Sep 2006
CVE-2006-4973 EXPLOITDB text WORKING POC
DotNetNuke < 3.3.5 and 4.x < 4.3.5 - Cross-Site Scripting via Error Parameter
Cross-site scripting (XSS) vulnerability in Default.aspx in Perpetual Motion Interactive Systems DotNetNuke before 3.3.5, and 4.x before 4.3.5, allows remote attackers to inject arbitrary HTML via the error parameter.