CVE-2006-0243

Name of the Vulnerable Software and Affected Versions SMBCMS version 2.1

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the text parameter used by the "Search Site" field.

Recommendations For SMBCMS version 2.1, as a temporary workaround, consider restricting the use of the text parameter in the "Search Site" field until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.