Vulnerabilities > CVE-2006-3624 - Cross-Site Scripting vulnerability in FLV Player 8
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Multiple cross-site scripting (XSS) vulnerabilities in FLV Players 8 allow remote attackers to inject arbitrary web script or HTML via the url parameter to (1) player.php or (2) popup.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description FLV Players 8 player.php url Parameter XSS. CVE-2006-3624. Remote exploits for multiple platform id EDB-ID:28209 last seen 2016-02-03 modified 2006-07-12 published 2006-07-12 reporter xzerox source https://www.exploit-db.com/download/28209/ title FLV Players 8 player.php url Parameter XSS description FLV Players 8 popup.php url Parameter XSS. CVE-2006-3624. Remote exploits for multiple platform id EDB-ID:28210 last seen 2016-02-03 modified 2006-07-12 published 2006-07-12 reporter xzerox source https://www.exploit-db.com/download/28210/ title FLV Players 8 popup.php url Parameter XSS