X3.4 suffers from arbitrary file reading vulnerability

Discuz! is a general-purpose community forum software system. X3.4 has an arbitrary file reading vulnerability that can be exploited by attackers to read file information...

Discuz Full Version Stored DOM XSS Vulnerability

Discuz! is a forum program. A stored DOM XSS vulnerability exists in the full version of Discuz. Due to mishandling of the Discuz editor JS, the JS native method of fetching HTML content in ELEMENT reverses the single and double quoted entity codes that have been escaped on the server side...