3 matches found
CVE-2002-1459
Cross-site scripting vulnerability in L-Forum 2.40 and earlier, when the "Enable HTML in messages" option is off, allows remote attackers to insert arbitrary script or HTML via message fields including 1 From, 2 E-Mail, and 3 Subject...
CVE-2002-1459
CVE-2002-1459 is a cross-site scripting vulnerability in L-Forum versions 2.40 and earlier, where the option “Enable HTML in messages” off allows remote insertion of script/HTML via From, E‑Mail, or Subject fields. Root cause: insufficient input validation/escaping in message fields. According to...
CVE-2002-1459
Cross-site scripting vulnerability in L-Forum 2.40 and earlier, when the "Enable HTML in messages" option is off, allows remote attackers to insert arbitrary script or HTML via message fields including 1 From, 2 E-Mail, and 3 Subject...