Cross site scripting

2007-09-2021:17:00

PRIOn knowledge base

www.prio-n.com

6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.6%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in index.php in Phormer 3.31 allow remote attackers to inject arbitrary web script or HTML via the (1) u, (2) p, (3) c, and (4) s parameters, and other unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CPENameOperatorVersion
phormereq3.31

CPE	Name	Operator	Version
	phormer	eq	3.31

References

osvdb.org/37183

secunia.com/advisories/26886

www.securityfocus.com/bid/25742

exchange.xforce.ibmcloud.com/vulnerabilities/36708