Cross-site scripting (XSS) vulnerability in Advanced Electron Forum (AEF) 1.0.6 allows remote attackers to inject arbitrary web script or HTML via the beg parameter in a members action to index.php.
CPE | Name | Operator | Version |
---|---|---|---|
advanced_electron_forum | eq | 1.0.6 |