AI Score
Confidence
High
EPSS
Percentile
72.6%
Multiple cross-site scripting (XSS) vulnerabilities in Stiva Forum 1.0 allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) demo.php and (2) forum.php, and the PATH_INFO to (3) include_forum.php.
osvdb.org/57177
osvdb.org/57178
packetstormsecurity.org/0908-exploits/stivaforum-xss.txt
secunia.com/advisories/36409
exchange.xforce.ibmcloud.com/vulnerabilities/52613