CVE-2006-5106 - Eradicative Perforators

Description

Cross-site scripting (XSS) vulnerability in FacileForms before 1.4.7 for Mambo and Joomla! when either register_globals or RG_EMULATION is enabled allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://www.facileforms.biz/content/view/108/140/ http://www.securityfocus.com/bid/20254 http://secunia.com/advisories/22125 http://www.osvdb.org/29237 http://www.vupen.com/english/advisories/2006/3817