PHPResidence versions less than or equal to 0.6 does not sanitize any of its input leading to many XSS vulnerabilities.
2607ed6e0b911413d8a9bba2b4f87d9f310b44162d746c1f3979dcadae22d24a
PHPResidence <= 0.6 XSS
Discovered by: Nomenumbra
Date: 23/5/2006
impact:moderate (privilege escalation,possible defacement)
PHP Residence software doesn't sanitize any of it's input,
allowing a malicious attacker (providing he/she has an account)
to inject arbitrary HTML or javascript code
Nomenumbra