View at Official ubuntu advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2005-0870 medium priority: Ubuntu including 3 source packages (egroupware, phpgroupware, phpsysinfo), 12 status rows across 4 suites (dapper, edgy, feisty, upstream): released 9, needs-triage 3.
Multiple cross-site scripting (XSS) vulnerabilities in phpSysInfo 2.3, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) sensor_program parameter to index.php, (2) text[language], (3) text[template], or (4) hide_picklist parameter to system_footer.php.