Thyme · Thyme · CVE-2006-2117
**Name of the Vulnerable Software and Affected Versions**
Thyme version 1.3
**Description**
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the search page.
**Recommendations**
For Thyme version 1.3, update to a version that fixes this issue to prevent remote attackers from injecting arbitrary web script or HTML.