CVE-2008-6654

Name of the Vulnerable Software and Affected Versions InfoBiz Server (affected versions not specified)

Description The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the keywords parameter in the "search results.php" file.

Recommendations For all affected versions, consider restricting access to the vulnerable "search results.php" file until a patch is available. As a temporary workaround, avoid using the keywords parameter in the affected file to minimize the risk of exploitation.