2 matches found
CVE-2004-2241
Phorum 5.0.11 and earlier is affected by a Cross-site Scripting (XSS) vulnerability that allows remote attackers to inject arbitrary HTML or web script via search.php. The note indicates some sources claim the vulnerable file is read.php, but this conflicts with the vendor’s patch. The NVD entry,...
CVE-2004-2241
Cross-site scripting XSS vulnerability in Phorum 5.0.11 and earlier allows remote attackers to inject arbitrary HTML or web script via search.php. NOTE: some sources have reported that the affected file is read.php, but this is inconsistent with the vendor's patch...