PublicDate: 2006-10-10 21:07:00 UTC
Candidate: CVE-2006-5227
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5227
Description:
 Cross-site scripting (XSS) vulnerability in admin.php in TorrentFlux 2.1
 allows remote attackers to inject arbitrary web script or HTML via (1) the
 $user_agent variable, probably obtained from the User-Agent HTTP header,
 and possibly (2) the $ip_resolved variable.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
 https://bugs.launchpad.net/ubuntu/+source/torrentflux/+bug/155491
dapper_torrentflux: DNE
edgy_torrentflux: released (2.1-1ubuntu0.2)
feisty_torrentflux: released (2.1-7)
gutsy_torrentflux: released (2.1-7)
devel_torrentflux: released (2.1-7)
upstream_torrentflux: needs-triage