CVE-2006-1239: Cross-site scripting (XSS) vulnerability in issue/createissue.aspx in Gemini 2.0 allows remote attackers to inject arbit

CVE-2006-1239 is a cross-site scripting (XSS, a type of attack where an attacker injects malicious code into a webpage that runs in other users' browsers) vulnerability in Gemini 2.0's issue creation page that allows attackers to inject arbitrary web script or HTML through the rtcDescription$RadEditor1 input field. The vulnerability has an unknown CVSS severity score as of the record date. The source note indicates that details come from third-party information rather than official vendor confirmation.