4 matches found
CVE-2006-5451
Multiple cross-site scripting XSS vulnerabilities in TorrentFlux 2.1 allow remote attackers to inject arbitrary web script or HTML via the 1 action, 2 file, and 3 users array variables in a admin.php, which are not properly handled when the administrator views the Activity Log; and the 4 torrent...
CVE-2006-5451
Multiple cross-site scripting XSS vulnerabilities in TorrentFlux 2.1 allow remote attackers to inject arbitrary web script or HTML via the 1 action, 2 file, and 3 users array variables in a admin.php, which are not properly handled when the administrator views the Activity Log; and the 4 torrent...
CVE-2006-5227
Cross-site scripting XSS vulnerability in admin.php in TorrentFlux 2.1 allows remote attackers to inject arbitrary web script or HTML via 1 the $useragent variable, probably obtained from the User-Agent HTTP header, and possibly 2 the $ipresolved variable...
CVE-2006-5227
CVE-2006-5227 describes a cross-site scripting (XSS) vulnerability in TorrentFlux 2.1, specifically in admin.php, where an attacker can inject arbitrary script or HTML via the $user_agent value (likely from the User-Agent header) and possibly the $ip_resolved variable. The connected sources reaff...