CVE-2006-1418

Name of the Vulnerable Software and Affected Versions Caloris Planitia E-School Management System versions 1.0 and earlier

Description The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the msg parameter in the default.asp file.

Recommendations For Caloris Planitia E-School Management System versions 1.0 and earlier, as a temporary workaround, consider restricting access to the default.asp file until a patch is available. Avoid using the msg parameter in the affected default.asp file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.