CVE-2006-6600 Information

Description

Cross-site scripting (XSS) vulnerability in dir.php in TorrentFlux 2.2 when allows remote attackers to inject arbitrary web script or HTML via double URL-encoded strings in the dir parameter a related issue to CVE-2006-5609.

Reference

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=23400582 http://secunia.com/advisories/23270