CVE-2006-1969

Name of the Vulnerable Software and Affected Versions KCScripts script versions prior to Portal Pack 6.0

Description The issue is related to a cross-site scripting (XSS) vulnerability. It affects the search/search.cgi component, likely part of Search Engine or Site Search, allowing remote attackers to inject arbitrary web script or HTML via the q parameter.

Recommendations For versions prior to Portal Pack 6.0, consider restricting access to the search/search.cgi component until a fix is available. As a temporary workaround, avoid using the q parameter in the affected search functionality to minimize the risk of exploitation.