CVE-2006-2167 Information
Feb 14, 2021
cve
Description
Cross-site scripting (XSS) vulnerability in SloughFlash SF-Users 1.0 possibly in register.php allows remote attackers to inject arbitrary web script or HTML by setting the username field to contain JavaScript in the SRC attribute of an IMG element.
Reference
http://secunia.com/advisories/19932 http://securityreason.com/securityalert/831 http://www.securityfocus.com/archive/1/432727/100/0/threaded http://www.securityfocus.com/bid/17783 http://www.vupen.com/english/advisories/2006/1637 https://exchange.xforce.ibmcloud.com/vulnerabilities/26215
Share on: