CVE-2006-3624
CVE-2006-3624 documents multiple cross-site scripting (XSS) vulnerabilities in FLV Players 8 . The issue is triggered by the url parameter to either player.php or popup.php , allowing remote injection of arbitrary script/HTML. NVD reports a CVSSv2 base score of 4.3 (MEDIUM) with network attack ve...