CVE-2008-6924
Multiple cross-site scripting (XSS) vulnerabilities in register.php in eSyndiCat Directory 2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) username, (2) email, (3) password, (4) password2, (5) security_code, and (6) register parameters.
Date published : 2009-08-10
http://www.securityfocus.com/bid/30178
http://packetstorm.linuxsecurity.com/0807-exploits/esyndicat-xss.txt