CVE-2006-2415
CVE-2006-2415 : Concrete details across multiple sources show XSS vulnerabilities in FlexChat 2.0 and earlier. The issues affect the web front-end via input vectors in CFM pages: (a) index.cfm parameters username and CFTOKEN, and (b) chat.cfm parameters CFTOKEN and CFID. The root cause is cross-s...