Phorum Cross-Site Scripting And Cross-site Request Forgery Vulnerabilities Network Vulnerability

Summary

This host is running Phorum and is prone to cross-site scripting and cross-site request forgery vulnerabilities.

Impact

Successful exploitation will allow attacker to execute arbitrary code in the context of an application. Impact Level: Application

Solution

Upgrade Phorum to 5.2.16 or later, For updates refer to http://www.phorum.org/downloads.php

Insight

The flaws are due to unspecified errors in the application.

Affected

Phorum version prior to 5.2.16

References

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Phorum Cross-Site Scripting and Cross-site request forgery Vulnerabilities