FCKeditor CVE-2006-6978 Cross-Site Scripting Vulnerability

FCKeditor CVE-2006-6978 Cross-Site Scripting Vulnerability

FCKeditor is prone to a cross-site scripting vulnerability. Cross-site scripting (XSS) vulnerability in the "Basic Toolbar Selection" in FCKEditor allows remote attackers to execute arbitrary JavaScript via the javascript: URI in the (1) href or (2) onmouseover attribute of the A HTML tag.