CVE-2006-5713

Name of the Vulnerable Software and Affected Versions: Easy File Sharing (EFS) Web Server version 4.0

Description: A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the author, content, or title parameters when posting a forum thread.

Recommendations: For Easy File Sharing (EFS) Web Server version 4.0, consider restricting access to the forum posting functionality until a fix is available, and avoid using the author, content, or title parameters in forum thread posts to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.