CVE-2005-0901

Name of the Vulnerable Software and Affected Versions NukeBookmarks version 0.6

Description The issue allows remote attackers to inject arbitrary web script or HTML via the catname, markname, comment, or category parameters, potentially leading to cross-site scripting (XSS) attacks.

Recommendations For NukeBookmarks version 0.6, consider validating and sanitizing user input for the catname, markname, comment, and category parameters to prevent arbitrary web script or HTML injection. As a temporary workaround, restrict access to these parameters until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.