Phorum Multiple Cross Site Scripting Vulnerabilities Network Vulnerability

Summary

According to its version number, the remote version of Phorum is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based authentication credentials and launch other attacks. Phorum 5.2.10 and 5.2-dev are vulnerable other versions may also be affected.

References

http://www.securityfocus.com/bid/34551

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

AdaptCMS 'init.php' Remote File Include Vulnerability
123 Flash Chat Multiple Security Vulnerabilities
AjaXplorer 'doc_file' Parameter Local File Disclosure Vulnerability
Apache Tiles Multiple XSS Vulnerability
Apache mod_proxy_ftp Wildcard Characters XSS Vulnerability

Take action and discover your vulnerabilities