5.5 Medium
AI Score
Confidence
High
0.022 Low
EPSS
Percentile
89.6%
Cross-site scripting (XSS) vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to inject arbitrary web script or HTML via the p parameter to an unspecified component, a different vulnerability than CVE-2011-0526.
www.vanillaforums.org/discussion/comment/134729/#Comment_134729