Security Advisory
CVE-2005-0914
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Multiple cross-site scripting (XSS) vulnerabilities in CPG Dragonfly 9.0.2.0 allow remote attackers to inject arbitrary web script or HTML via (1) the profile parameter to index.php or (2) the cat parameter.