5.8 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.0%
A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the “author” parameter.
packetstormsecurity.com/files/162942/FUDForum-3.1.0-Cross-Site-Scripting.html
github.com/fudforum/FUDforum/issues/2