6 matches found
EUVD-2006-2416
Malware in sbrugna...
CVE-2006-2415
Multiple cross-site scripting XSS vulnerabilities in FlexChat 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 username and 2 CFTOKEN parameter in a index.cfm and 3 CFTOKEN and 4 CFID parameter in b chat.cfm...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in FlexChat 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 username and 2 CFTOKEN parameter in a index.cfm and 3 CFTOKEN and 4 CFID parameter in b chat.cfm...
CVE-2006-2415
Multiple cross-site scripting XSS vulnerabilities in FlexChat 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 username and 2 CFTOKEN parameter in a index.cfm and 3 CFTOKEN and 4 CFID parameter in b chat.cfm...
CVE-2006-2415
CVE-2006-2415 : Concrete details across multiple sources show XSS vulnerabilities in FlexChat 2.0 and earlier. The issues affect the web front-end via input vectors in CFM pages: (a) index.cfm parameters username and CFTOKEN, and (b) chat.cfm parameters CFTOKEN and CFID. The root cause is cross-s...
FlexChat XSS
FlexChat XSS Vuln. discovered by : r0t Pridels Sec Crew Date: 13 may 2006 vendorlink:http://www.flexchat.net/ affected versions:v.2.0 and prior orginal advisory:http://pridels.blogspot.com/2006/05/flexchat-xss.html Vuln. Description: FlexChat contains a flaw that allows a remote cross site...