CVE-2006-3299

Name of the Vulnerable Software and Affected Versions Usenet Script version 0.5

Description A cross-site scripting issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the group parameter in the "index.php" file.

Recommendations For version 0.5, update to a newer version that contains a fix for this issue to prevent exploitation. As a temporary workaround, consider restricting access to the group parameter in the "index.php" file until a patch is available.