VYPR
Unrated severityNVD Advisory· Published Dec 15, 2006· Updated Jun 16, 2026

CVE-2006-6600

CVE-2006-6600

Description

Cross-site scripting (XSS) vulnerability in dir.php in TorrentFlux 2.2, when allows remote attackers to inject arbitrary web script or HTML via double URL-encoded strings in the dir parameter, a related issue to CVE-2006-5609.

Affected products

2
  • cpe:2.3:a:torrentflux:torrentflux:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:torrentflux:torrentflux:*:*:*:*:*:*:*:*range: <=2.2
    • (no CPE)range: =2.2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.