Summary
The remote host is using FuseTalk, a web based discussion forum.
A vulnerability exists in the script 'tombstone.cfm' which may allow an attacker to execute arbitrary HTML and script code in the context of the user's browser.
Solution
Upgrade to the latest version of this software
Severity
Classification
-
CVE CVE-2004-1594 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- AfterLogic WebMail Pro Multiple Cross Site Scripting Vulnerabilities
- Apache Solr XML External Entity(XXE) Vulnerability-01 Jan-14
- AeroMail Cross Site Request Forgery, HTML Injection and Cross Site Scripting Vulnerabilities
- Afian 'includer.php' Directory Traversal Vulnerability
- Apache Tomcat NIO Connector Denial of Service Vulnerability