CVE-2011-4561
Phorum 5.2.18 is vulnerable to a cross-site scripting (XSS) flaw in admin.php, exploitable by remote attackers via PATH_INFO to admin/index.php. The issue affects Phorum’s admin interface and can allow injection of arbitrary web script or HTML. Multiple sources (NVD/OpenVAS) confirm the vulnerabi...