CVE-2006-1761

Name of the Vulnerable Software and Affected Versions blur6ex version 0.3.452

Description The issue allows remote attackers to inject arbitrary web script or HTML via the errormsg parameter in index.php, due to lack of sanitization in the error message.

Recommendations For blur6ex version 0.3.452, ensure proper sanitization of the errormsg parameter in index.php to prevent injection of arbitrary web script or HTML. As a temporary workaround, consider restricting access to the index.php file until a proper fix is applied.