CVE-2006-1923

Name of the Vulnerable Software and Affected Versions LinPHA versions prior to 1.1.1

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML. The affected API endpoints include "RSS/RSS.php".

Recommendations For versions prior to 1.1.1, update to version 1.1.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the "RSS/RSS.php" endpoint until a patch is available.