A security researcher has discovered more than 8 million Adobe Flash files that make the Web sites hosting those files vulnerable to attack.

"The Flash files are contained on a wide variety of sites operated by online casinos, news organizations, banks, and professional sports teams," writes The Register's Dan Goodin. "They make the pages where they reside susceptible to XSS, or cross-site scripting, attacks that have the potential to inject malicious code and content into a visitor's browser and in some cases steal credentials used to authenticate user accounts."

"The researcher, who goes by the moniker MustLive, said the Flash files contain poorly written ActionScript used to count the number of times a banner has been clicked and typically contain the clickTAG or url parameters," Goodin writes.

Click here to read the story at The Register.