Cross-site scripting (XSS) vulnerability in SloughFlash SF-Users 1.0, possibly in register.php, allows remote attackers to inject arbitrary web script or HTML by setting the username field to contain JavaScript in the SRC attribute of an IMG element.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-05-04T10:00:00

Updated: 2024-08-07T17:43:28.319Z

Reserved: 2006-05-03T00:00:00

Link: CVE-2006-2167

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2006-05-04T12:38:00.000

Modified: 2024-11-21T00:10:42.557

Link: CVE-2006-2167

cve-icon Redhat

No data.