CVE-2006-5037

Name of the Vulnerable Software and Affected Versions Matrix versions after 3.8

Description The issue allows remote attackers to use the application as an HTTP proxy server via a MIME encoded URL in the sq content src parameter. This can be used to access arbitrary sites with the server's IP address and conduct cross-site scripting (XSS) attacks.

Recommendations For versions after 3.8, consider restricting access to the sq content src parameter to minimize the risk of exploitation. Avoid using the sq content src parameter in the affected application until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.