CVE-2006-0073

Name of the Vulnerable Software and Affected Versions: DiscusWare Discus versions 3.10.4 through 3.10.5

Description: A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a URL. The issue arises because the URL is not properly sanitized from the resulting error message.

Recommendations: For versions 3.10.4 and 3.10.5, as a temporary workaround, consider implementing proper input validation and sanitization for all URLs to prevent the injection of malicious scripts. At the moment, there is no information about a newer version that contains a fix for this vulnerability.