6.3.0

DATE	CVE	VULNERABILITY TITLE	RISK
2007-01-23	CVE-2007-0407	HTML Injection vulnerability in WebGUI Registration Username Cross-site scripting (XSS) vulnerability in Operation/User.pm in Plain Black WebGUI before 7.3.5 (beta) allows remote attackers to inject arbitrary web script or HTML via the username parameter during anonymous registration, a different vector than CVE-2007-0308. network plain-black	6.8
2007-01-18	CVE-2007-0308	Cross-Site Scripting vulnerability in WebGUI Wiki Title Cross-site scripting (XSS) vulnerability in Plain Black WebGUI before 7.3.4 (beta) allows remote attackers to inject arbitrary web script or HTML via Wiki Page titles. network plain-black	6.8
2005-12-31	CVE-2005-4694	Unspecified vulnerability in the www_add method in Asset.pm in Plain Black WebGUI 6.3.0 and other versions before 6.7.6 allows attackers to execute arbitrary code via unknown attack vectors. network low complexity plain-black	7.5