PHPFusion is a lightweight open source content management system. A cross-site scripting vulnerability exists in the descript() function in PHPFusion version 9.03.110. An attacker could exploit this vulnerability by appending “//” to the end of the text to conduct a cross-site scripting attack.
CPE | Name | Operator | Version |
---|---|---|---|
phpfusion phpfusion | eq | 9.03.110 |