CVE-2006-2968

Name of the Vulnerable Software and Affected Versions LabWiki version 1.0

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the query parameter in the search input box of the search.php file.

Recommendations For LabWiki version 1.0, consider validating and sanitizing user input for the query parameter in the search.php file to prevent XSS attacks. As a temporary workaround, restrict access to the search functionality until a proper fix is applied.